c4e6b08fe42cb68781593d387857fef5c6cb8c99292179a919a2d6f014456be6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4e6b08fe42cb68781593d387857fef5c6cb8c99292179a919a2d6f014456be6
Size

192KB
Sample

240723-c1nlpstakq
MD5

e24d266c1b81ae90e118b666286e31fc
SHA1

185cb1844a0797a4f4b55b046d761643e240efa5
SHA256

c4e6b08fe42cb68781593d387857fef5c6cb8c99292179a919a2d6f014456be6
SHA512

b0674fc76036d960e24ae2be87a4de0ce613145e61e52fcf603d10c52c70c3a108cef5a7f47d9a8ac50a5683248b808f581b717644deb79c5067271d8802a789
SSDEEP

3072:o7/TZxG9K9a8GW1RHtDd1AZoUBW3FJeRuaWNXmgu+tAcrbFAJc+RsUi1aVDk5:Oxmj8r9dWZHEFJ7aWN1rtMsP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c4e6b08fe42cb68781593d387857fef5c6cb8c99292179a919a2d6f014456be6
- Size
  
  192KB
- MD5
  
  e24d266c1b81ae90e118b666286e31fc
- SHA1
  
  185cb1844a0797a4f4b55b046d761643e240efa5
- SHA256
  
  c4e6b08fe42cb68781593d387857fef5c6cb8c99292179a919a2d6f014456be6
- SHA512
  
  b0674fc76036d960e24ae2be87a4de0ce613145e61e52fcf603d10c52c70c3a108cef5a7f47d9a8ac50a5683248b808f581b717644deb79c5067271d8802a789
- SSDEEP
  
  3072:o7/TZxG9K9a8GW1RHtDd1AZoUBW3FJeRuaWNXmgu+tAcrbFAJc+RsUi1aVDk5:Oxmj8r9dWZHEFJ7aWN1rtMsP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2