c8172a97f249e34a2b70277e23f2b29199ab0775a76be35512d908bf499b769c | Triage

Sharing

General

Target

c8172a97f249e34a2b70277e23f2b29199ab0775a76be35512d908bf499b769c
Size

96KB
Sample

240928-chdzjs1enq
MD5

745ccf600f4c787952329774e174d801
SHA1

8b6736802a9fd38fbff37d629e9bc49655ab103d
SHA256

c8172a97f249e34a2b70277e23f2b29199ab0775a76be35512d908bf499b769c
SHA512

0528c4f6f40424ced06e49be3ab811927ddfa4599a8a41a165dcf7ecd4a91b2c86616339d91066893240d862bc4211e0f599bb92b9f68e046c5f382f1aa5bf75
SSDEEP

1536:+uOGruwqIwn+34LNL/hLy2SPdUATpVBqyksRQpRkRLJzeLD9N0iQGRNQR8RyV+3W:+u/runtn2eh/stdjTpVxzepSJdEN0s4X

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c8172a97f249e34a2b70277e23f2b29199ab0775a76be35512d908bf499b769c
- Size
  
  96KB
- MD5
  
  745ccf600f4c787952329774e174d801
- SHA1
  
  8b6736802a9fd38fbff37d629e9bc49655ab103d
- SHA256
  
  c8172a97f249e34a2b70277e23f2b29199ab0775a76be35512d908bf499b769c
- SHA512
  
  0528c4f6f40424ced06e49be3ab811927ddfa4599a8a41a165dcf7ecd4a91b2c86616339d91066893240d862bc4211e0f599bb92b9f68e046c5f382f1aa5bf75
- SSDEEP
  
  1536:+uOGruwqIwn+34LNL/hLy2SPdUATpVBqyksRQpRkRLJzeLD9N0iQGRNQR8RyV+3W:+u/runtn2eh/stdjTpVxzepSJdEN0s4X
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence