cfc9cf1de674ee7a983acfe85e9827da93cd967e2b4934a21ab71aea531f1358 | Triage

Sharing

General

Target

cfc9cf1de674ee7a983acfe85e9827da93cd967e2b4934a21ab71aea531f1358
Size

280KB
Sample

240825-gfdcfsyhqq
MD5

4f39d2c67cd7b7a1d4f4c889dfb5799c
SHA1

f2d658018f15b82efa13530fd73fe374fef6dec3
SHA256

cfc9cf1de674ee7a983acfe85e9827da93cd967e2b4934a21ab71aea531f1358
SHA512

22bf6628dea17bfcdd72dc87a39688ae819562f22a7cada63a911030cda958ff8768d03adef2181e84e623dc77d2dcf1b5312b5c5ed325357dbc84e3cf03508e
SSDEEP

6144:H2Is5jbPWvi/GOORjMmRUoooooooooooooooooooooooooy/G3:Wj2i//OVLCooooooooooooooooooooo9

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  cfc9cf1de674ee7a983acfe85e9827da93cd967e2b4934a21ab71aea531f1358
- Size
  
  280KB
- MD5
  
  4f39d2c67cd7b7a1d4f4c889dfb5799c
- SHA1
  
  f2d658018f15b82efa13530fd73fe374fef6dec3
- SHA256
  
  cfc9cf1de674ee7a983acfe85e9827da93cd967e2b4934a21ab71aea531f1358
- SHA512
  
  22bf6628dea17bfcdd72dc87a39688ae819562f22a7cada63a911030cda958ff8768d03adef2181e84e623dc77d2dcf1b5312b5c5ed325357dbc84e3cf03508e
- SSDEEP
  
  6144:H2Is5jbPWvi/GOORjMmRUoooooooooooooooooooooooooy/G3:Wj2i//OVLCooooooooooooooooooooo9
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence