f1ce60e2e72e39bbe932ae14c53dcd46ede9703ed318e908c25b36b56fd56d92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f1ce60e2e72e39bbe932ae14c53dcd46ede9703ed318e908c25b36b56fd56d92
Size

176KB
Sample

240803-fkdckstfqr
MD5

d01ad6b27e34c55a3ebb2b5217e99f01
SHA1

dfca5f4368ffd981fa3f0fbd79150106995adfb4
SHA256

f1ce60e2e72e39bbe932ae14c53dcd46ede9703ed318e908c25b36b56fd56d92
SHA512

725591ca3bd5525b1725de6c69ae56ff608d53cb1dbdc4e74c613dc165cc7517c2d8edb16f377e5329abcf90ab5c54d93ab8dc5c8228707abaaba5882a98e8d5
SSDEEP

3072:WySLBpKBOm6GxzaEPXuhuXGQmVDeCyqOGbo92ynnbVHvzIYVrLo:WySTKH/zPXuapoaCPXbo92ynnZlVrU

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f1ce60e2e72e39bbe932ae14c53dcd46ede9703ed318e908c25b36b56fd56d92
- Size
  
  176KB
- MD5
  
  d01ad6b27e34c55a3ebb2b5217e99f01
- SHA1
  
  dfca5f4368ffd981fa3f0fbd79150106995adfb4
- SHA256
  
  f1ce60e2e72e39bbe932ae14c53dcd46ede9703ed318e908c25b36b56fd56d92
- SHA512
  
  725591ca3bd5525b1725de6c69ae56ff608d53cb1dbdc4e74c613dc165cc7517c2d8edb16f377e5329abcf90ab5c54d93ab8dc5c8228707abaaba5882a98e8d5
- SSDEEP
  
  3072:WySLBpKBOm6GxzaEPXuhuXGQmVDeCyqOGbo92ynnbVHvzIYVrLo:WySTKH/zPXuapoaCPXbo92ynnZlVrU
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence