cbf23e29ef88bc55bf0b57a261ace02a9f849ad466d85485fdd5ad14b1d910f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbf23e29ef88bc55bf0b57a261ace02a9f849ad466d85485fdd5ad14b1d910f9
Size

91KB
Sample

240824-elf97asbpa
MD5

73228ea87800cef5b6c33ebc2c1dfbe6
SHA1

0c9c9e3a926058370e0790916a7b4a0a0cb9ec14
SHA256

cbf23e29ef88bc55bf0b57a261ace02a9f849ad466d85485fdd5ad14b1d910f9
SHA512

446b5528b5f13db14418af354bcc791374f66a8208bae4de6438a03979cde69ab82c580441eaa72fad03d96eeaf9a5c1f8ed91712b1f45734f89ab49aae46a87
SSDEEP

1536:KL1Do34tq6YfWTe1RdL/2ZDHeGx7777sM919HDkXW9FI8dad8mYN/yp4lLOreS:KLscq6Y+Te1cDeGx7777LDkGv6qbyp6g

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  cbf23e29ef88bc55bf0b57a261ace02a9f849ad466d85485fdd5ad14b1d910f9
- Size
  
  91KB
- MD5
  
  73228ea87800cef5b6c33ebc2c1dfbe6
- SHA1
  
  0c9c9e3a926058370e0790916a7b4a0a0cb9ec14
- SHA256
  
  cbf23e29ef88bc55bf0b57a261ace02a9f849ad466d85485fdd5ad14b1d910f9
- SHA512
  
  446b5528b5f13db14418af354bcc791374f66a8208bae4de6438a03979cde69ab82c580441eaa72fad03d96eeaf9a5c1f8ed91712b1f45734f89ab49aae46a87
- SSDEEP
  
  1536:KL1Do34tq6YfWTe1RdL/2ZDHeGx7777sM919HDkXW9FI8dad8mYN/yp4lLOreS:KLscq6Y+Te1cDeGx7777LDkGv6qbyp6g
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence