fd4fcceb7fc89c46c6583a4a1d2100ba95acfb319d8f8e7a370ebbdaa08fd00c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd4fcceb7fc89c46c6583a4a1d2100ba95acfb319d8f8e7a370ebbdaa08fd00c
Size

45KB
Sample

240829-ggtqtsyclk
MD5

7652860f05f7694708be308b2211d885
SHA1

47668c7beb40e7736fd01dbd7ed8bd7f79ae444c
SHA256

fd4fcceb7fc89c46c6583a4a1d2100ba95acfb319d8f8e7a370ebbdaa08fd00c
SHA512

d0bda60ce2b5aca94232bbad3cd42d4c4f09543005e63ae7497f9c7eab58b02582b96232bebe30007b943de3fb009371d7aebf863bf6790d6b70c16228d4fbab
SSDEEP

768:Y9iGagBeTDuMOs+adWY5AYRznwXeuSH2pH7v1saz5FP/X/1H5Yr:Y9izN+c3AYR2n7fZ+r

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fd4fcceb7fc89c46c6583a4a1d2100ba95acfb319d8f8e7a370ebbdaa08fd00c
- Size
  
  45KB
- MD5
  
  7652860f05f7694708be308b2211d885
- SHA1
  
  47668c7beb40e7736fd01dbd7ed8bd7f79ae444c
- SHA256
  
  fd4fcceb7fc89c46c6583a4a1d2100ba95acfb319d8f8e7a370ebbdaa08fd00c
- SHA512
  
  d0bda60ce2b5aca94232bbad3cd42d4c4f09543005e63ae7497f9c7eab58b02582b96232bebe30007b943de3fb009371d7aebf863bf6790d6b70c16228d4fbab
- SSDEEP
  
  768:Y9iGagBeTDuMOs+adWY5AYRznwXeuSH2pH7v1saz5FP/X/1H5Yr:Y9izN+c3AYR2n7fZ+r
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence