1fcaee1791b03fb56c12a2dd08309dc69a9771c2f06e51a1915af6c8f2697c2a | Triage

Sharing

General

Target

1fcaee1791b03fb56c12a2dd08309dc69a9771c2f06e51a1915af6c8f2697c2aN
Size

59KB
Sample

240920-xcc6aa1gjd
MD5

627b0e51fce25491bbc7e226a82588a0
SHA1

28d661eafef084d3a7f57a51f794d32e2f133f8c
SHA256

1fcaee1791b03fb56c12a2dd08309dc69a9771c2f06e51a1915af6c8f2697c2a
SHA512

50cc3886d3cd774d9413a06e143d1288572113c141807b3c4a7190ed7c4361902a0309ca041089eb215a433adbc3715ca4e667a625b10678ef935533455fa28f
SSDEEP

1536:585M9wImRXpf2d7akoQuWHRzQUTC2a2LsO:C5NI1aktTZQUTrnsO

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1fcaee1791b03fb56c12a2dd08309dc69a9771c2f06e51a1915af6c8f2697c2aN
- Size
  
  59KB
- MD5
  
  627b0e51fce25491bbc7e226a82588a0
- SHA1
  
  28d661eafef084d3a7f57a51f794d32e2f133f8c
- SHA256
  
  1fcaee1791b03fb56c12a2dd08309dc69a9771c2f06e51a1915af6c8f2697c2a
- SHA512
  
  50cc3886d3cd774d9413a06e143d1288572113c141807b3c4a7190ed7c4361902a0309ca041089eb215a433adbc3715ca4e667a625b10678ef935533455fa28f
- SSDEEP
  
  1536:585M9wImRXpf2d7akoQuWHRzQUTC2a2LsO:C5NI1aktTZQUTrnsO
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence