2212cf8c0e9e584f3321483540b4f63eaf061b5501874b8bb985d9c45ea55549 | Triage

Sharing

General

Target

2212cf8c0e9e584f3321483540b4f63eaf061b5501874b8bb985d9c45ea55549N
Size

352KB
Sample

240919-g8cxdsvgmm
MD5

811161482f88ee533fde79881ac4a7b0
SHA1

0cf741ec222c02c043dbdef5720ccb67ccbb4de7
SHA256

2212cf8c0e9e584f3321483540b4f63eaf061b5501874b8bb985d9c45ea55549
SHA512

9f51a4174e1a7eff090d1066af0eb38547214f0333dba7590ceaa46b48d4238d8d20fff8a944b84452f9600e2220cfa0830d6c15ae91a8a6076c4c9b3fe9e6c9
SSDEEP

6144:4RkoZZLR2WHozNz9iWis/j9SrJz9ieis/j9SrJz9is/j9SrJwWisp:1mHrsUasUqsU6sp

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  2212cf8c0e9e584f3321483540b4f63eaf061b5501874b8bb985d9c45ea55549N
- Size
  
  352KB
- MD5
  
  811161482f88ee533fde79881ac4a7b0
- SHA1
  
  0cf741ec222c02c043dbdef5720ccb67ccbb4de7
- SHA256
  
  2212cf8c0e9e584f3321483540b4f63eaf061b5501874b8bb985d9c45ea55549
- SHA512
  
  9f51a4174e1a7eff090d1066af0eb38547214f0333dba7590ceaa46b48d4238d8d20fff8a944b84452f9600e2220cfa0830d6c15ae91a8a6076c4c9b3fe9e6c9
- SSDEEP
  
  6144:4RkoZZLR2WHozNz9iWis/j9SrJz9ieis/j9SrJz9is/j9SrJwWisp:1mHrsUasUqsU6sp
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence