43505e9adc35434f24fde1553c22f085b5c876e448c225ee9fac3df39142b909 | Triage

Sharing

General

Target

43505e9adc35434f24fde1553c22f085b5c876e448c225ee9fac3df39142b909N
Size

704KB
Sample

240920-tcjraavbmc
MD5

c5c5c4927454fa1d8ec6b1d03b37b900
SHA1

0dc7d15e46427ecc5d6ea318bd51a3cf2fec6131
SHA256

43505e9adc35434f24fde1553c22f085b5c876e448c225ee9fac3df39142b909
SHA512

cbdc9011fa16d71c798f95657c02e02fd5af0f7a4411605ea1cbc1ec68c72422b836af90fbc1d87969cccf3b9127256a96dd32146ac5672cb2ac2339ff3c69d8
SSDEEP

12288:S7UPbuRrrQg5W/+zrWAI5KFum/+zrWAIAqWim/+zrWAI5KFHTP7rXFr/+zrWAI5b:lDurQg5Wm0BmmvFimm0MTP7hm0b

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  43505e9adc35434f24fde1553c22f085b5c876e448c225ee9fac3df39142b909N
- Size
  
  704KB
- MD5
  
  c5c5c4927454fa1d8ec6b1d03b37b900
- SHA1
  
  0dc7d15e46427ecc5d6ea318bd51a3cf2fec6131
- SHA256
  
  43505e9adc35434f24fde1553c22f085b5c876e448c225ee9fac3df39142b909
- SHA512
  
  cbdc9011fa16d71c798f95657c02e02fd5af0f7a4411605ea1cbc1ec68c72422b836af90fbc1d87969cccf3b9127256a96dd32146ac5672cb2ac2339ff3c69d8
- SSDEEP
  
  12288:S7UPbuRrrQg5W/+zrWAI5KFum/+zrWAIAqWim/+zrWAI5KFHTP7rXFr/+zrWAI5b:lDurQg5Wm0BmmvFimm0MTP7hm0b
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence