ddeed41fda6e5f6e1a5b425af33656db76c52af6aa8c8f484cac2912553e05a5 | Triage

Sharing

General

Target

ddeed41fda6e5f6e1a5b425af33656db76c52af6aa8c8f484cac2912553e05a5
Size

407KB
Sample

240825-g1xa3a1bkk
MD5

75bb4d662d2b02f5dc3b432aa33a534f
SHA1

1972e49098f076e70ef7291b54ad4539b5ce694b
SHA256

ddeed41fda6e5f6e1a5b425af33656db76c52af6aa8c8f484cac2912553e05a5
SHA512

43b2da73e65021efddf48f91dc2b57a8729f71b5caf281b1b181c7528ea4845295fa63f19155b5b5c3d95dafbd9974d6dc412b416801bb615a63a301df792757
SSDEEP

6144:fUhuRQTpui6yYPaIGcjDpui6yYPaIGckSU05836pui6yYPaIGckN:DRGpV6yYP3pV6yYPg058KpV6yYPS

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ddeed41fda6e5f6e1a5b425af33656db76c52af6aa8c8f484cac2912553e05a5
- Size
  
  407KB
- MD5
  
  75bb4d662d2b02f5dc3b432aa33a534f
- SHA1
  
  1972e49098f076e70ef7291b54ad4539b5ce694b
- SHA256
  
  ddeed41fda6e5f6e1a5b425af33656db76c52af6aa8c8f484cac2912553e05a5
- SHA512
  
  43b2da73e65021efddf48f91dc2b57a8729f71b5caf281b1b181c7528ea4845295fa63f19155b5b5c3d95dafbd9974d6dc412b416801bb615a63a301df792757
- SSDEEP
  
  6144:fUhuRQTpui6yYPaIGcjDpui6yYPaIGckSU05836pui6yYPaIGckN:DRGpV6yYP3pV6yYPg058KpV6yYPS
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence