c8dca444098a8089a42fadd7b74ab3ae8bf1f8c94cba2693df360c403032b967 | Triage

Sharing

General

Target

c8dca444098a8089a42fadd7b74ab3ae8bf1f8c94cba2693df360c403032b967
Size

376KB
Sample

240808-dtyzjaserh
MD5

d0b324b61b50bdb89b0b123a74e92c79
SHA1

3229f3bcf2a964889ff7c99057ed6825b3af1e7e
SHA256

c8dca444098a8089a42fadd7b74ab3ae8bf1f8c94cba2693df360c403032b967
SHA512

239403ab0a8600edb6196bfef63623810bfda1dafae14515b485d98342d160654c067a609f7ca7ce7a6cc8d3d0541e8aefdaa2ffdc65dfb371fa02893c19f6d5
SSDEEP

6144:1khi2Pj9lxKkkIJgC7oQ0IV/Atl/AtW1OE43V1+25CzRoQ0Ibl4HdE43V1+2:ui2D50I2mi4lCzb0IF4

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c8dca444098a8089a42fadd7b74ab3ae8bf1f8c94cba2693df360c403032b967
- Size
  
  376KB
- MD5
  
  d0b324b61b50bdb89b0b123a74e92c79
- SHA1
  
  3229f3bcf2a964889ff7c99057ed6825b3af1e7e
- SHA256
  
  c8dca444098a8089a42fadd7b74ab3ae8bf1f8c94cba2693df360c403032b967
- SHA512
  
  239403ab0a8600edb6196bfef63623810bfda1dafae14515b485d98342d160654c067a609f7ca7ce7a6cc8d3d0541e8aefdaa2ffdc65dfb371fa02893c19f6d5
- SSDEEP
  
  6144:1khi2Pj9lxKkkIJgC7oQ0IV/Atl/AtW1OE43V1+25CzRoQ0Ibl4HdE43V1+2:ui2D50I2mi4lCzb0IF4
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence