7cfbde88ef447728f23e9d605c7483be734f6a6540a6136f76c4bdf4b49ffc4c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7cfbde88ef447728f23e9d605c7483be734f6a6540a6136f76c4bdf4b49ffc4c
Size

112KB
Sample

240818-2mdl1ssapj
MD5

df50e977d6ec57441ae553245e5f2ff8
SHA1

069730962760a4b39f64420269625d7553815cc7
SHA256

7cfbde88ef447728f23e9d605c7483be734f6a6540a6136f76c4bdf4b49ffc4c
SHA512

b6c835870a5f5863829c0169fb2b71f65e57235daa7f9a6b7f372614a997e28d5f564911cb40ca458e5fd76aaf5f1fe3a7b9f10d94c296e56fe0cf283abea761
SSDEEP

1536:DW9pxKYYMPEqXUf+MbAs4cgMYrI0As4kwcoUgMYEQ8I0As4kwcoUgMYEQ8I0As4H:DW9pVZPBTMZFcn7KGKYXindfl8I

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7cfbde88ef447728f23e9d605c7483be734f6a6540a6136f76c4bdf4b49ffc4c
- Size
  
  112KB
- MD5
  
  df50e977d6ec57441ae553245e5f2ff8
- SHA1
  
  069730962760a4b39f64420269625d7553815cc7
- SHA256
  
  7cfbde88ef447728f23e9d605c7483be734f6a6540a6136f76c4bdf4b49ffc4c
- SHA512
  
  b6c835870a5f5863829c0169fb2b71f65e57235daa7f9a6b7f372614a997e28d5f564911cb40ca458e5fd76aaf5f1fe3a7b9f10d94c296e56fe0cf283abea761
- SSDEEP
  
  1536:DW9pxKYYMPEqXUf+MbAs4cgMYrI0As4kwcoUgMYEQ8I0As4kwcoUgMYEQ8I0As4H:DW9pVZPBTMZFcn7KGKYXindfl8I
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence