cdc8791f817cc2e75c3f66beddcaac3db99ecd2a10bedb41b296d880722cccaf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cdc8791f817cc2e75c3f66beddcaac3db99ecd2a10bedb41b296d880722cccaf
Size

176KB
Sample

240707-d8akgssgmp
MD5

dfbf4f747ce2e2adc1065c96279a1c66
SHA1

3f5e9d4a11eb48e7c19d63d8c5c9595914e664d3
SHA256

cdc8791f817cc2e75c3f66beddcaac3db99ecd2a10bedb41b296d880722cccaf
SHA512

04e737814eb3a7349b8e0bf41a03db51384d28e3a4a8b64ba182f8a9eb890cd1a7764f2e037d22ab74cc2be842e032058a6336a0a72b4fb6cc29adee217e2435
SSDEEP

3072:pqYyj9vKceBarlOGA8d2E2fAYjmjRrz3E3:p7yj9/eBRXE2fAEG4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  cdc8791f817cc2e75c3f66beddcaac3db99ecd2a10bedb41b296d880722cccaf
- Size
  
  176KB
- MD5
  
  dfbf4f747ce2e2adc1065c96279a1c66
- SHA1
  
  3f5e9d4a11eb48e7c19d63d8c5c9595914e664d3
- SHA256
  
  cdc8791f817cc2e75c3f66beddcaac3db99ecd2a10bedb41b296d880722cccaf
- SHA512
  
  04e737814eb3a7349b8e0bf41a03db51384d28e3a4a8b64ba182f8a9eb890cd1a7764f2e037d22ab74cc2be842e032058a6336a0a72b4fb6cc29adee217e2435
- SSDEEP
  
  3072:pqYyj9vKceBarlOGA8d2E2fAYjmjRrz3E3:p7yj9/eBRXE2fAEG4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2