c9a7ae5db2d63bda9559d14bf75be9d630f58f5384e614d5f9d9d0fac974d160 | Triage

Sharing

General

Target

c9a7ae5db2d63bda9559d14bf75be9d630f58f5384e614d5f9d9d0fac974d160
Size

96KB
Sample

240701-c5qa4atdra
MD5

055f4db939f9b9361e93ef1ae24af94b
SHA1

f58b8ceae293d6c04fa0fbb2f74f7f02ec68a126
SHA256

c9a7ae5db2d63bda9559d14bf75be9d630f58f5384e614d5f9d9d0fac974d160
SHA512

c46c5de8c0c3177c65b6deb7ae2cec673d5b6931eaebcdd376bf0b6200290e3643b9f3a8ccc5dce8c0ef7578e6202649085787b52a5a0cd5bae2d02f690dc26e
SSDEEP

1536:Yp1qG01NqMvB0mAQp/nSpO0O8NcDL2LlZS/FCb4noaJSNzJO/:R5P1H/jsNcDolZSs4noakXO/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c9a7ae5db2d63bda9559d14bf75be9d630f58f5384e614d5f9d9d0fac974d160
- Size
  
  96KB
- MD5
  
  055f4db939f9b9361e93ef1ae24af94b
- SHA1
  
  f58b8ceae293d6c04fa0fbb2f74f7f02ec68a126
- SHA256
  
  c9a7ae5db2d63bda9559d14bf75be9d630f58f5384e614d5f9d9d0fac974d160
- SHA512
  
  c46c5de8c0c3177c65b6deb7ae2cec673d5b6931eaebcdd376bf0b6200290e3643b9f3a8ccc5dce8c0ef7578e6202649085787b52a5a0cd5bae2d02f690dc26e
- SSDEEP
  
  1536:Yp1qG01NqMvB0mAQp/nSpO0O8NcDL2LlZS/FCb4noaJSNzJO/:R5P1H/jsNcDolZSs4noakXO/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2