c4a23440c4bbb7b6f864b4a446bfdedb4f530fa8d0712e95041d2fdc5b858eb3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4a23440c4bbb7b6f864b4a446bfdedb4f530fa8d0712e95041d2fdc5b858eb3
Size

91KB
Sample

240628-cwlasawenb
MD5

496e0403514b0f62541b41dc7eb4a773
SHA1

e1c523b5664ed05b71b2c0481fba2f864411f9ac
SHA256

c4a23440c4bbb7b6f864b4a446bfdedb4f530fa8d0712e95041d2fdc5b858eb3
SHA512

9948c4b26b0dc950e5b4fe6b1d0d5de4e0fa1024bc20029aaa42777cad3d934f77e4310ac0d518203085800aefd380089f875df6ea71d94667b9a1a2cd477b9c
SSDEEP

1536:sKd0UTgZ65aE9pJcyYqX18wG/lnTi5xv/dxjYjZXqe4DtO2:sKeUTgZga2p6yf1fQTkDjY50pO2

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c4a23440c4bbb7b6f864b4a446bfdedb4f530fa8d0712e95041d2fdc5b858eb3
- Size
  
  91KB
- MD5
  
  496e0403514b0f62541b41dc7eb4a773
- SHA1
  
  e1c523b5664ed05b71b2c0481fba2f864411f9ac
- SHA256
  
  c4a23440c4bbb7b6f864b4a446bfdedb4f530fa8d0712e95041d2fdc5b858eb3
- SHA512
  
  9948c4b26b0dc950e5b4fe6b1d0d5de4e0fa1024bc20029aaa42777cad3d934f77e4310ac0d518203085800aefd380089f875df6ea71d94667b9a1a2cd477b9c
- SSDEEP
  
  1536:sKd0UTgZ65aE9pJcyYqX18wG/lnTi5xv/dxjYjZXqe4DtO2:sKeUTgZga2p6yf1fQTkDjY50pO2
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2