2c1911f37671cd7cc417e9be0b015bb3538c217cc823f9fc09a743aec8b86816 | Triage

Sharing

General

Target

2c1911f37671cd7cc417e9be0b015bb3538c217cc823f9fc09a743aec8b86816
Size

161KB
Sample

240709-y4xjnstdrk
MD5

a72f4d70fd9c2ef935fed6682e98751f
SHA1

f90205d63e3f657ff259e0d19a14b012c46b7ed0
SHA256

2c1911f37671cd7cc417e9be0b015bb3538c217cc823f9fc09a743aec8b86816
SHA512

6d33f1a51c25d69837b829ed9937c23bc10cc3799be6fc2696d533513c6a64e2bf1e9d7fbdd8f88fb08560f93f3f83db5001f546db1d8216f439a1f337d30a4a
SSDEEP

3072:qPuxmEk3hjsj8ZHNdkTVwtCJXeex7rrIRZK8K8/kvV:qWAEk9XZHfkTVwtmeetrIyRV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2c1911f37671cd7cc417e9be0b015bb3538c217cc823f9fc09a743aec8b86816
- Size
  
  161KB
- MD5
  
  a72f4d70fd9c2ef935fed6682e98751f
- SHA1
  
  f90205d63e3f657ff259e0d19a14b012c46b7ed0
- SHA256
  
  2c1911f37671cd7cc417e9be0b015bb3538c217cc823f9fc09a743aec8b86816
- SHA512
  
  6d33f1a51c25d69837b829ed9937c23bc10cc3799be6fc2696d533513c6a64e2bf1e9d7fbdd8f88fb08560f93f3f83db5001f546db1d8216f439a1f337d30a4a
- SSDEEP
  
  3072:qPuxmEk3hjsj8ZHNdkTVwtCJXeex7rrIRZK8K8/kvV:qWAEk9XZHfkTVwtmeetrIyRV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2