cc84390bb516f08dc52bab840d75a34077ac238e0b3b414d2c7db9ac0d9e32b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cc84390bb516f08dc52bab840d75a34077ac238e0b3b414d2c7db9ac0d9e32b3
Size

89KB
Sample

240913-crgrssydkm
MD5

56f6d00885d658296e3de4ad79ce88ee
SHA1

e0112103b32068b0cc4ce41cfebb43b99b493b9a
SHA256

cc84390bb516f08dc52bab840d75a34077ac238e0b3b414d2c7db9ac0d9e32b3
SHA512

819dd19d32052b78246af4cd46167811b0b16b7eafdb29fe0dc98d2ca3d7d16eb472a144431ca1f940fbbe8c449a22ed5b7ceb5acef84f5958f5f167f98a38ea
SSDEEP

1536:A2u6PPhYwmCbGz6pQq3jdrClE0en5zP2kRy2yXGsysINAzculExkg8Fk:AuY6bGz6uq3jd10M5qkR7yWnaculakgN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  cc84390bb516f08dc52bab840d75a34077ac238e0b3b414d2c7db9ac0d9e32b3
- Size
  
  89KB
- MD5
  
  56f6d00885d658296e3de4ad79ce88ee
- SHA1
  
  e0112103b32068b0cc4ce41cfebb43b99b493b9a
- SHA256
  
  cc84390bb516f08dc52bab840d75a34077ac238e0b3b414d2c7db9ac0d9e32b3
- SHA512
  
  819dd19d32052b78246af4cd46167811b0b16b7eafdb29fe0dc98d2ca3d7d16eb472a144431ca1f940fbbe8c449a22ed5b7ceb5acef84f5958f5f167f98a38ea
- SSDEEP
  
  1536:A2u6PPhYwmCbGz6pQq3jdrClE0en5zP2kRy2yXGsysINAzculExkg8Fk:AuY6bGz6uq3jd10M5qkR7yWnaculakgN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence