21c73ad01b26a9bbbd4d57cb698bd0fb9fe03cc72efab51d95cd72bef56c0617 | Triage

Sharing

General

Target

21c73ad01b26a9bbbd4d57cb698bd0fb9fe03cc72efab51d95cd72bef56c0617
Size

624KB
Sample

240801-zy3zya1ang
MD5

cfd886dc465aadc24750186bbfcb194c
SHA1

d6feec3bc2277bbc914210cc65d167193c5d1648
SHA256

21c73ad01b26a9bbbd4d57cb698bd0fb9fe03cc72efab51d95cd72bef56c0617
SHA512

922d8ea8853366ad136bf0ff3c21cbcf2fe5b94b3619685da1ce33b8e6217ad65c747e468ec0107cbe9eff4fba08722d3e5cf47540c106312ddf57111f834d68
SSDEEP

12288:P1/aGLDCMNpNAkoSzZWD8ayX2MQCw7D0zbwcSw8dxBNZlwIe6I+cEnJlY:P1/aGLDCM4D8ayGMvbwbhlwuY

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  21c73ad01b26a9bbbd4d57cb698bd0fb9fe03cc72efab51d95cd72bef56c0617
- Size
  
  624KB
- MD5
  
  cfd886dc465aadc24750186bbfcb194c
- SHA1
  
  d6feec3bc2277bbc914210cc65d167193c5d1648
- SHA256
  
  21c73ad01b26a9bbbd4d57cb698bd0fb9fe03cc72efab51d95cd72bef56c0617
- SHA512
  
  922d8ea8853366ad136bf0ff3c21cbcf2fe5b94b3619685da1ce33b8e6217ad65c747e468ec0107cbe9eff4fba08722d3e5cf47540c106312ddf57111f834d68
- SSDEEP
  
  12288:P1/aGLDCMNpNAkoSzZWD8ayX2MQCw7D0zbwcSw8dxBNZlwIe6I+cEnJlY:P1/aGLDCM4D8ayGMvbwbhlwuY
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence