deb5c1bf68becb247bb36180355bc8ffbeec1bf1cffe61d926765fe136a8b6d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

deb5c1bf68becb247bb36180355bc8ffbeec1bf1cffe61d926765fe136a8b6d4
Size

96KB
Sample

240709-gzzd2ascmg
MD5

273b08c305aae0a09b95b19bd6dca0a8
SHA1

aa5f3e4a94be5531f3de0fc94b4186472dd9029a
SHA256

deb5c1bf68becb247bb36180355bc8ffbeec1bf1cffe61d926765fe136a8b6d4
SHA512

78f6d50ebbeb8463efc98659e58b2239c4c61a3e7fe78f6085b49a0063ba0ed465b701c349f7b4f62b39abf0152906476645640cc12d4ef3cdabf4f47baf9a98
SSDEEP

1536:X6vxGZSMhyqhvByZzlL2LVsBMu/HCmiDcg3MZRP3cEW3AE:CNMh1ZywVa6miEo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  deb5c1bf68becb247bb36180355bc8ffbeec1bf1cffe61d926765fe136a8b6d4
- Size
  
  96KB
- MD5
  
  273b08c305aae0a09b95b19bd6dca0a8
- SHA1
  
  aa5f3e4a94be5531f3de0fc94b4186472dd9029a
- SHA256
  
  deb5c1bf68becb247bb36180355bc8ffbeec1bf1cffe61d926765fe136a8b6d4
- SHA512
  
  78f6d50ebbeb8463efc98659e58b2239c4c61a3e7fe78f6085b49a0063ba0ed465b701c349f7b4f62b39abf0152906476645640cc12d4ef3cdabf4f47baf9a98
- SSDEEP
  
  1536:X6vxGZSMhyqhvByZzlL2LVsBMu/HCmiDcg3MZRP3cEW3AE:CNMh1ZywVa6miEo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2