cdc8ee21d93ae0fe76d2c612f5454f481da05d8c156f22f57399d243bd441cbc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ff9c487e5fe35eeda761b644bdea5f0N
Size

79KB
Sample

240913-cqyzpaycrp
MD5

3ff9c487e5fe35eeda761b644bdea5f0
SHA1

c7417a858d0a33e6291d758b17142ffb8a4f7124
SHA256

cdc8ee21d93ae0fe76d2c612f5454f481da05d8c156f22f57399d243bd441cbc
SHA512

77a58ecb7a775ae223ff4174f02e67e9c3de93fd7f82d9c05141a1f05af4d96813aa83995e725b2a370175813c55c5a6867705f44c8a26f8fd86b640b3fec913
SSDEEP

1536:lOObDEDa7DlJzQ6iUEAiFkSIgiItKq9v6Ds:lPvh7DDzQ6iUEAixtBtKq9vn

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3ff9c487e5fe35eeda761b644bdea5f0N
- Size
  
  79KB
- MD5
  
  3ff9c487e5fe35eeda761b644bdea5f0
- SHA1
  
  c7417a858d0a33e6291d758b17142ffb8a4f7124
- SHA256
  
  cdc8ee21d93ae0fe76d2c612f5454f481da05d8c156f22f57399d243bd441cbc
- SHA512
  
  77a58ecb7a775ae223ff4174f02e67e9c3de93fd7f82d9c05141a1f05af4d96813aa83995e725b2a370175813c55c5a6867705f44c8a26f8fd86b640b3fec913
- SSDEEP
  
  1536:lOObDEDa7DlJzQ6iUEAiFkSIgiItKq9v6Ds:lPvh7DDzQ6iUEAixtBtKq9vn
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence