9e1e0e3c0c94ba3e5c9389f24f385dfcfca25d05d985c4eba14f081a3d59d550 | Triage

Sharing

General

Target

cf6c8606e078805a14a50e169685c560N.exe
Size

91KB
Sample

240902-23tceazdjm
MD5

cf6c8606e078805a14a50e169685c560
SHA1

f1f48a1198014bdc4ef6948182553f007c6b4654
SHA256

9e1e0e3c0c94ba3e5c9389f24f385dfcfca25d05d985c4eba14f081a3d59d550
SHA512

164c3974aecec9a57fb123c69215a92928e38023734c10ad2fc80248421ba2b5996560fd1017811f4a02f9302e10a171bf607efecb7825e8ecac3b27131e6a64
SSDEEP

1536:RsXJB8avKmJbbmUCmZNhsEue6EJLlVaQRBQxQRbWyKCa1FwFkm96:TaFtnF6Ela/QhrL4we06

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  cf6c8606e078805a14a50e169685c560N.exe
- Size
  
  91KB
- MD5
  
  cf6c8606e078805a14a50e169685c560
- SHA1
  
  f1f48a1198014bdc4ef6948182553f007c6b4654
- SHA256
  
  9e1e0e3c0c94ba3e5c9389f24f385dfcfca25d05d985c4eba14f081a3d59d550
- SHA512
  
  164c3974aecec9a57fb123c69215a92928e38023734c10ad2fc80248421ba2b5996560fd1017811f4a02f9302e10a171bf607efecb7825e8ecac3b27131e6a64
- SSDEEP
  
  1536:RsXJB8avKmJbbmUCmZNhsEue6EJLlVaQRBQxQRbWyKCa1FwFkm96:TaFtnF6Ela/QhrL4we06
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence