0e11debbe0812cce99337b5a32278078062988df7413fa3ebaf910eab5942aaa | Triage

Sharing

General

Target

connect_to_c2.exe
Size

7.7MB
Sample

240921-gdgbbsxdka
MD5

ba542f8ff823e9645eba3c56b4b3bab6
SHA1

f1871a9c1061f2b033bb1b1716fcec06806243d0
SHA256

0e11debbe0812cce99337b5a32278078062988df7413fa3ebaf910eab5942aaa
SHA512

7c220127590f292210d9d67b71c040ed8c11c2a6813aefb10d49c4474ef97cfa73a06db71cf5bfcdc9283532358abce123efdc4c8d9d7be1d88a2aea25fcb76d
SSDEEP

196608:wpC72EXMCHGLLc54i1wN+yjXx5nDasqWQ2dTNUGgSEhlK8g+GKYb:iC6EXMCHWUjKjx5WsqWxTz003Kw

Score

7^/10

persistence pyinstaller

Malware Config

Targets

- Target
  
  connect_to_c2.exe
- Size
  
  7.7MB
- MD5
  
  ba542f8ff823e9645eba3c56b4b3bab6
- SHA1
  
  f1871a9c1061f2b033bb1b1716fcec06806243d0
- SHA256
  
  0e11debbe0812cce99337b5a32278078062988df7413fa3ebaf910eab5942aaa
- SHA512
  
  7c220127590f292210d9d67b71c040ed8c11c2a6813aefb10d49c4474ef97cfa73a06db71cf5bfcdc9283532358abce123efdc4c8d9d7be1d88a2aea25fcb76d
- SSDEEP
  
  196608:wpC72EXMCHGLLc54i1wN+yjXx5nDasqWQ2dTNUGgSEhlK8g+GKYb:iC6EXMCHWUjKjx5WsqWxTz003Kw
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1