e0c8f560692ef42a24887c66f925a39063a757b16383c1f026a0b74f68c1324a | Triage

Sharing

General

Target

e0c8f560692ef42a24887c66f925a39063a757b16383c1f026a0b74f68c1324a
Size

78KB
Sample

240914-cyn5fsshrg
MD5

4e7c870c0fdb3d2a59997068503b9a93
SHA1

107e81a014393492d0e84b5564d1b1f6c2f34cc3
SHA256

e0c8f560692ef42a24887c66f925a39063a757b16383c1f026a0b74f68c1324a
SHA512

9c99ebc9c39b7c7b23dcf8a7b640995980d10143ae048287fcfac3167f19f811754b2721ec30c37d569b080d60fc22bc1b28dfaeac4aaec88976eb22af8cf0f0
SSDEEP

1536:yAtf5h7OlCY46pnSIX1SfiVON+zL20gJi1ie:yA95hSCYlpSIFSfiVOgzL20WKt

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e0c8f560692ef42a24887c66f925a39063a757b16383c1f026a0b74f68c1324a
- Size
  
  78KB
- MD5
  
  4e7c870c0fdb3d2a59997068503b9a93
- SHA1
  
  107e81a014393492d0e84b5564d1b1f6c2f34cc3
- SHA256
  
  e0c8f560692ef42a24887c66f925a39063a757b16383c1f026a0b74f68c1324a
- SHA512
  
  9c99ebc9c39b7c7b23dcf8a7b640995980d10143ae048287fcfac3167f19f811754b2721ec30c37d569b080d60fc22bc1b28dfaeac4aaec88976eb22af8cf0f0
- SSDEEP
  
  1536:yAtf5h7OlCY46pnSIX1SfiVON+zL20gJi1ie:yA95hSCYlpSIFSfiVOgzL20WKt
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence