cdf3f775b3c85be84c4782bb81518c8a8a28295e7412d816a09a14ea9fc05368 | Triage

Sharing

General

Target

cdf3f775b3c85be84c4782bb81518c8a8a28295e7412d816a09a14ea9fc05368N
Size

352KB
Sample

240921-da345s1hnl
MD5

5b967f868511c0d248e20d987cb11300
SHA1

0f60358d7cb3dee42a312c9ee25aa2dea39cb358
SHA256

cdf3f775b3c85be84c4782bb81518c8a8a28295e7412d816a09a14ea9fc05368
SHA512

a3a2c19307f20560c08a9f1ab7032336c293d06f9ae9ad4ff29beebecb42252ed22e058067888599ec3531ba74e277752997180c294d3f26de5384f9a393b2f7
SSDEEP

6144:PDhXTmz9iWis/j9SrJz9ieis/j9SrJz9is/j9SrJwWisp:tNsUasUqsU6sp

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  cdf3f775b3c85be84c4782bb81518c8a8a28295e7412d816a09a14ea9fc05368N
- Size
  
  352KB
- MD5
  
  5b967f868511c0d248e20d987cb11300
- SHA1
  
  0f60358d7cb3dee42a312c9ee25aa2dea39cb358
- SHA256
  
  cdf3f775b3c85be84c4782bb81518c8a8a28295e7412d816a09a14ea9fc05368
- SHA512
  
  a3a2c19307f20560c08a9f1ab7032336c293d06f9ae9ad4ff29beebecb42252ed22e058067888599ec3531ba74e277752997180c294d3f26de5384f9a393b2f7
- SSDEEP
  
  6144:PDhXTmz9iWis/j9SrJz9ieis/j9SrJz9is/j9SrJwWisp:tNsUasUqsU6sp
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence