ccfda98a335e258887d0e253e4ff5b934a0430023d35b90252e011c21c66f77f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ccfda98a335e258887d0e253e4ff5b934a0430023d35b90252e011c21c66f77f
Size

76KB
Sample

240914-ccb8rs1gqa
MD5

456e9a9bd58b631ef666393edcc6192a
SHA1

d62b485209b94b0c4b46679f29962c67b5b8b95a
SHA256

ccfda98a335e258887d0e253e4ff5b934a0430023d35b90252e011c21c66f77f
SHA512

d72f408f6907590604ffcf913f67b0fa761799305156672d5bfc38097cf7cb5eb74e14992bfadff2f127c3c9b80825322828a06fa2f2fd1daf394230c9ffeae3
SSDEEP

1536:LO5KN9iSO/eL47FIYcuir0HioQV+/eCeyvCQ:lq/sXYtir0Hrk+

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ccfda98a335e258887d0e253e4ff5b934a0430023d35b90252e011c21c66f77f
- Size
  
  76KB
- MD5
  
  456e9a9bd58b631ef666393edcc6192a
- SHA1
  
  d62b485209b94b0c4b46679f29962c67b5b8b95a
- SHA256
  
  ccfda98a335e258887d0e253e4ff5b934a0430023d35b90252e011c21c66f77f
- SHA512
  
  d72f408f6907590604ffcf913f67b0fa761799305156672d5bfc38097cf7cb5eb74e14992bfadff2f127c3c9b80825322828a06fa2f2fd1daf394230c9ffeae3
- SSDEEP
  
  1536:LO5KN9iSO/eL47FIYcuir0HioQV+/eCeyvCQ:lq/sXYtir0Hrk+
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence