cd79b37fefb957e1c09d4fc469c6b9257dd45634bdd2955f91b6549f47f29be1 | Triage

Sharing

General

Target

cd79b37fefb957e1c09d4fc469c6b9257dd45634bdd2955f91b6549f47f29be1N
Size

56KB
Sample

240920-rcljrszhnq
MD5

c2956b0d4bb78f4ee3890ca4024ab6a0
SHA1

5fd48f46bbf680901b6f788accc562157d2b829a
SHA256

cd79b37fefb957e1c09d4fc469c6b9257dd45634bdd2955f91b6549f47f29be1
SHA512

4b776f557625f3d54986b09fd1f38ceacc2810972f8d03f6266b16c26d9b29582eadc1c9dd48bc6d5225e67c43997b70192b2b2ac8132016087b86a482789b19
SSDEEP

768:+FdT4CPBPG6KVGn/jQMQM1qlJih9SXPBibCil9bMAWvyM8O/1H5iXdnh:+FdhPZlKVGL2Jl8zSXUbb9wAW6M8ki

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  cd79b37fefb957e1c09d4fc469c6b9257dd45634bdd2955f91b6549f47f29be1N
- Size
  
  56KB
- MD5
  
  c2956b0d4bb78f4ee3890ca4024ab6a0
- SHA1
  
  5fd48f46bbf680901b6f788accc562157d2b829a
- SHA256
  
  cd79b37fefb957e1c09d4fc469c6b9257dd45634bdd2955f91b6549f47f29be1
- SHA512
  
  4b776f557625f3d54986b09fd1f38ceacc2810972f8d03f6266b16c26d9b29582eadc1c9dd48bc6d5225e67c43997b70192b2b2ac8132016087b86a482789b19
- SSDEEP
  
  768:+FdT4CPBPG6KVGn/jQMQM1qlJih9SXPBibCil9bMAWvyM8O/1H5iXdnh:+FdhPZlKVGL2Jl8zSXUbb9wAW6M8ki
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence