55d2a774f3998e5f954255c968c998a3adc75caf9a965da3f07601a6712471e3 | Triage

Sharing

General

Target

55d2a774f3998e5f954255c968c998a3adc75caf9a965da3f07601a6712471e3N
Size

187KB
Sample

240921-cxffxs1cml
MD5

d9588eb51420b10d40650ad41a9d3b70
SHA1

54fdd7aa31d9a9561c29375e8d398e551cff6513
SHA256

55d2a774f3998e5f954255c968c998a3adc75caf9a965da3f07601a6712471e3
SHA512

ef7062be1a8ae9d78f0ecc03b56e318bca425b581e984d3bc1beab4c3bae594c0ef93bac5d235a9619ff34412191e63c27619f145cd29c65c7b49d26a937a209
SSDEEP

3072:Cp1TEJ+4A6Hwh9sE5e6Zl2NkzwH5GJks8WYlOWe7VsayDZVZev1N:Cp1i+D6Hw/sEME9zwZ9s8SZq/svL

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  55d2a774f3998e5f954255c968c998a3adc75caf9a965da3f07601a6712471e3N
- Size
  
  187KB
- MD5
  
  d9588eb51420b10d40650ad41a9d3b70
- SHA1
  
  54fdd7aa31d9a9561c29375e8d398e551cff6513
- SHA256
  
  55d2a774f3998e5f954255c968c998a3adc75caf9a965da3f07601a6712471e3
- SHA512
  
  ef7062be1a8ae9d78f0ecc03b56e318bca425b581e984d3bc1beab4c3bae594c0ef93bac5d235a9619ff34412191e63c27619f145cd29c65c7b49d26a937a209
- SSDEEP
  
  3072:Cp1TEJ+4A6Hwh9sE5e6Zl2NkzwH5GJks8WYlOWe7VsayDZVZev1N:Cp1i+D6Hw/sEME9zwZ9s8SZq/svL
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence