2889458d79fe98afcab1c80950b163690161a0d5550726662e0bc923ecad7ff0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c2dfa30bd67b97b1930bcb5afa041c30N
Size

177KB
Sample

240907-zp1s8avbjj
MD5

c2dfa30bd67b97b1930bcb5afa041c30
SHA1

0848f515a460bebdb10c7425b9576831c3268552
SHA256

2889458d79fe98afcab1c80950b163690161a0d5550726662e0bc923ecad7ff0
SHA512

ccb14ee94783305fc1ac0f178c8ab8fb708c08c8a858628e5f68e8e776c7dd824cbf9d6199ebaa2a91435649d35a350feb95ffe40ebd84d2f1e70f1d421baec8
SSDEEP

3072:wwfkQWvg3/Mg3q/haR5sS+vfvLHhjh8g1eGFyOsa:RfmEMga/harSvLHh98gwG0ON

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c2dfa30bd67b97b1930bcb5afa041c30N
- Size
  
  177KB
- MD5
  
  c2dfa30bd67b97b1930bcb5afa041c30
- SHA1
  
  0848f515a460bebdb10c7425b9576831c3268552
- SHA256
  
  2889458d79fe98afcab1c80950b163690161a0d5550726662e0bc923ecad7ff0
- SHA512
  
  ccb14ee94783305fc1ac0f178c8ab8fb708c08c8a858628e5f68e8e776c7dd824cbf9d6199ebaa2a91435649d35a350feb95ffe40ebd84d2f1e70f1d421baec8
- SSDEEP
  
  3072:wwfkQWvg3/Mg3q/haR5sS+vfvLHhjh8g1eGFyOsa:RfmEMga/harSvLHh98gwG0ON
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence