d592dc78c8db184a49cf9f41215e5b49a56d909280419b0a59ee7dd9ccb08f5a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dce1762278b1fcd2020b0a6b6f556ab0N
Size

245KB
Sample

240915-lcjghsxbjr
MD5

dce1762278b1fcd2020b0a6b6f556ab0
SHA1

0a188eda4e57e4068010044e3e2b5133ec0e135c
SHA256

d592dc78c8db184a49cf9f41215e5b49a56d909280419b0a59ee7dd9ccb08f5a
SHA512

dafdb6a465e6cc966e2503217f5cd8fa88053c333ede5b7b3ffcc35befeecb79736f2d325d969f1dc12083c2fe5949ec182bbbada6519166638222e71b793f04
SSDEEP

3072:S2aAt/NFtfzY5/6tPxuENYwago+bAr+Qka:lP1NYhgo0ArV

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  dce1762278b1fcd2020b0a6b6f556ab0N
- Size
  
  245KB
- MD5
  
  dce1762278b1fcd2020b0a6b6f556ab0
- SHA1
  
  0a188eda4e57e4068010044e3e2b5133ec0e135c
- SHA256
  
  d592dc78c8db184a49cf9f41215e5b49a56d909280419b0a59ee7dd9ccb08f5a
- SHA512
  
  dafdb6a465e6cc966e2503217f5cd8fa88053c333ede5b7b3ffcc35befeecb79736f2d325d969f1dc12083c2fe5949ec182bbbada6519166638222e71b793f04
- SSDEEP
  
  3072:S2aAt/NFtfzY5/6tPxuENYwago+bAr+Qka:lP1NYhgo0ArV
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence