5c677d7280f2c4b655fe58179eae1848808d7feecc12278b4be4128cb9650b49 | Triage

Sharing

General

Target

5c677d7280f2c4b655fe58179eae1848808d7feecc12278b4be4128cb9650b49
Size

96KB
Sample

240912-2xy1pszdll
MD5

8e6e4e25b20f27b9a402ed4d2a9e7cd1
SHA1

30d14031150814e7d9ca57ec8dfdcc2e8b5f51c6
SHA256

5c677d7280f2c4b655fe58179eae1848808d7feecc12278b4be4128cb9650b49
SHA512

45f350553004f9f0baced03b88fc74874584e70eea6c15e44ab99bcc1ff82e30cededf1c32ef432ee2f721358a50dcc12d2cc77f8b8ccede53747845ee0412b9
SSDEEP

1536:tqtEgcVOIo1mdO2X6Jzi4BZ3lWQzBize9MbinV39+ChnSdFFn7Elz45zFV3zMetM:0tNj1m4Vi4BZ3Mi4AMbqV39ThSdn7El3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  5c677d7280f2c4b655fe58179eae1848808d7feecc12278b4be4128cb9650b49
- Size
  
  96KB
- MD5
  
  8e6e4e25b20f27b9a402ed4d2a9e7cd1
- SHA1
  
  30d14031150814e7d9ca57ec8dfdcc2e8b5f51c6
- SHA256
  
  5c677d7280f2c4b655fe58179eae1848808d7feecc12278b4be4128cb9650b49
- SHA512
  
  45f350553004f9f0baced03b88fc74874584e70eea6c15e44ab99bcc1ff82e30cededf1c32ef432ee2f721358a50dcc12d2cc77f8b8ccede53747845ee0412b9
- SSDEEP
  
  1536:tqtEgcVOIo1mdO2X6Jzi4BZ3lWQzBize9MbinV39+ChnSdFFn7Elz45zFV3zMetM:0tNj1m4Vi4BZ3Mi4AMbqV39ThSdn7El3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence