c71cd63a826b0a0cd1976ba8063671e7999a6aac84f994bcca9d999fc7dbdb10 | Triage

Sharing

General

Target

cbd505e8c5f6463bc0551659f4b3d6b0N
Size

176KB
Sample

240826-dxrpmatdqr
MD5

cbd505e8c5f6463bc0551659f4b3d6b0
SHA1

dd94e955936bfd4b59b6906b760e0528cdcc02ed
SHA256

c71cd63a826b0a0cd1976ba8063671e7999a6aac84f994bcca9d999fc7dbdb10
SHA512

85ff5f56f88b13c4b1371a93325a201c33dae4b87bf659a70d07202d5a14e8f05a6b33bfd2a67e073349d9c7b3dd6e44216c58aa129be4539d2d144ff9fc29b0
SSDEEP

3072:z9E4Wgbr57BVFqmx1E9Hqmz674Qbf6xET/nhqCoNWDY1TuDBujfgY1LRQBAhHuYK:Z0MJBVlx+Vf274Q2xqhxoNH1Ti5YtuY

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  cbd505e8c5f6463bc0551659f4b3d6b0N
- Size
  
  176KB
- MD5
  
  cbd505e8c5f6463bc0551659f4b3d6b0
- SHA1
  
  dd94e955936bfd4b59b6906b760e0528cdcc02ed
- SHA256
  
  c71cd63a826b0a0cd1976ba8063671e7999a6aac84f994bcca9d999fc7dbdb10
- SHA512
  
  85ff5f56f88b13c4b1371a93325a201c33dae4b87bf659a70d07202d5a14e8f05a6b33bfd2a67e073349d9c7b3dd6e44216c58aa129be4539d2d144ff9fc29b0
- SSDEEP
  
  3072:z9E4Wgbr57BVFqmx1E9Hqmz674Qbf6xET/nhqCoNWDY1TuDBujfgY1LRQBAhHuYK:Z0MJBVlx+Vf274Q2xqhxoNH1Ti5YtuY
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence