c94cfc3c2ed4caec704e768c0067e3c6a2fa0dc87449b20c4cb2f71439d74f28 | Triage

Sharing

General

Target

c94cfc3c2ed4caec704e768c0067e3c6a2fa0dc87449b20c4cb2f71439d74f28
Size

79KB
Sample

240825-f53g7sydkq
MD5

b659bc818327b7b8e90185631e11490e
SHA1

0166c6ef81f40092651a46058b5da0da11a03cc7
SHA256

c94cfc3c2ed4caec704e768c0067e3c6a2fa0dc87449b20c4cb2f71439d74f28
SHA512

21ad23e4347801c5fda6f04ec6dfd7fad6b7bb5f888ce52e02bfac29410102aded278851439ca3b2ab66c0e5c9e3dd44f0286cdc837061a5ef3b78d762c35900
SSDEEP

1536:GBrkneyxo+EZEDQphVg2sK/H6U5hZOmhsZrI1jHJZrR:erkneybwEDQm2sKioOisu1jHJ9R

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c94cfc3c2ed4caec704e768c0067e3c6a2fa0dc87449b20c4cb2f71439d74f28
- Size
  
  79KB
- MD5
  
  b659bc818327b7b8e90185631e11490e
- SHA1
  
  0166c6ef81f40092651a46058b5da0da11a03cc7
- SHA256
  
  c94cfc3c2ed4caec704e768c0067e3c6a2fa0dc87449b20c4cb2f71439d74f28
- SHA512
  
  21ad23e4347801c5fda6f04ec6dfd7fad6b7bb5f888ce52e02bfac29410102aded278851439ca3b2ab66c0e5c9e3dd44f0286cdc837061a5ef3b78d762c35900
- SSDEEP
  
  1536:GBrkneyxo+EZEDQphVg2sK/H6U5hZOmhsZrI1jHJZrR:erkneybwEDQm2sKioOisu1jHJ9R
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence