c82e7627396926a2fa6fae5074a041daba1a535d751ed407eb5d249804b7d0cd | Triage

Sharing

General

Target

c82e7627396926a2fa6fae5074a041daba1a535d751ed407eb5d249804b7d0cd
Size

91KB
Sample

240930-p8aq2a1apd
MD5

21c09a26d795834968727e74305abdec
SHA1

af9a7a1b5a96aa91d85bccb8208381b24b71fa7d
SHA256

c82e7627396926a2fa6fae5074a041daba1a535d751ed407eb5d249804b7d0cd
SHA512

f3d65731d8dcc8129165f4c1c6ce3aff50ff9b104496270b0bcd78a0d42ca690bc6c25640563a42d4176c26990f5ab020c9d4ca9d35c98d68c806ff9ce7beab7
SSDEEP

1536:mpuv6AB/cRyt/G/5uhdgnl48T67a7jxUEMqWMHrP/VXoYr/viVMi:CuiGQyRQhTEabWk94o/vOMi

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c82e7627396926a2fa6fae5074a041daba1a535d751ed407eb5d249804b7d0cd
- Size
  
  91KB
- MD5
  
  21c09a26d795834968727e74305abdec
- SHA1
  
  af9a7a1b5a96aa91d85bccb8208381b24b71fa7d
- SHA256
  
  c82e7627396926a2fa6fae5074a041daba1a535d751ed407eb5d249804b7d0cd
- SHA512
  
  f3d65731d8dcc8129165f4c1c6ce3aff50ff9b104496270b0bcd78a0d42ca690bc6c25640563a42d4176c26990f5ab020c9d4ca9d35c98d68c806ff9ce7beab7
- SSDEEP
  
  1536:mpuv6AB/cRyt/G/5uhdgnl48T67a7jxUEMqWMHrP/VXoYr/viVMi:CuiGQyRQhTEabWk94o/vOMi
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence