cd7d01bd0e08c1a1c49516293c36d24d2c121ae296721a6c254720a33b34861f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd7d01bd0e08c1a1c49516293c36d24d2c121ae296721a6c254720a33b34861f
Size

570KB
Sample

240811-czra7sverc
MD5

c8a17133f3489345a8ab6a75c0d8a4fe
SHA1

64fa54e43242a5f79757c772c1c116c0fea4669e
SHA256

cd7d01bd0e08c1a1c49516293c36d24d2c121ae296721a6c254720a33b34861f
SHA512

e32a2580a89d943d38fb45be67e5609ec02580009c97501da42b56f4bf8eeb7d617fbf8e00d0cf4516736d0dee9b8ca2c81765e175f12bbbe623e1ed3f57974f
SSDEEP

12288:sgDwPh2kkkkK4kXkkkkkkkkl888888888888888888nusMH0QiRLsRf:sMwPh2kkkkK4kXkkkkkkkkhLg

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  cd7d01bd0e08c1a1c49516293c36d24d2c121ae296721a6c254720a33b34861f
- Size
  
  570KB
- MD5
  
  c8a17133f3489345a8ab6a75c0d8a4fe
- SHA1
  
  64fa54e43242a5f79757c772c1c116c0fea4669e
- SHA256
  
  cd7d01bd0e08c1a1c49516293c36d24d2c121ae296721a6c254720a33b34861f
- SHA512
  
  e32a2580a89d943d38fb45be67e5609ec02580009c97501da42b56f4bf8eeb7d617fbf8e00d0cf4516736d0dee9b8ca2c81765e175f12bbbe623e1ed3f57974f
- SSDEEP
  
  12288:sgDwPh2kkkkK4kXkkkkkkkkl888888888888888888nusMH0QiRLsRf:sMwPh2kkkkK4kXkkkkkkkkhLg
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence