af3be09194290daa72a8987b6e12f9e0b540ccf4bf7c2ddb3588ba2aabfe45b3 | Triage

Sharing

General

Target

af3be09194290daa72a8987b6e12f9e0b540ccf4bf7c2ddb3588ba2aabfe45b3
Size

237KB
Sample

221204-plkbyshb25
MD5

ee55e9377aba2babbc272efd1ff1f11d
SHA1

f0d5140adecd90f3da0088d9a9e672f918c41b3c
SHA256

af3be09194290daa72a8987b6e12f9e0b540ccf4bf7c2ddb3588ba2aabfe45b3
SHA512

d41df8fe4399d1a02c79421fd16fa0dc07dd8dd24a41ab8d0e541d095b11260dea3bdc1c26f07e4801956b7e3456fed535cac3ade7d852a17569fbea11100196
SSDEEP

1536:ojjcfvcIAuacgaHByoVzAHTPxJNCHVRkhAH4VhbLjgEiwW5bMFe4tvGcGnwk9+6:4+kIAi4IzQJNURkZ7bwwkbMzOwk9t

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  af3be09194290daa72a8987b6e12f9e0b540ccf4bf7c2ddb3588ba2aabfe45b3
- Size
  
  237KB
- MD5
  
  ee55e9377aba2babbc272efd1ff1f11d
- SHA1
  
  f0d5140adecd90f3da0088d9a9e672f918c41b3c
- SHA256
  
  af3be09194290daa72a8987b6e12f9e0b540ccf4bf7c2ddb3588ba2aabfe45b3
- SHA512
  
  d41df8fe4399d1a02c79421fd16fa0dc07dd8dd24a41ab8d0e541d095b11260dea3bdc1c26f07e4801956b7e3456fed535cac3ade7d852a17569fbea11100196
- SSDEEP
  
  1536:ojjcfvcIAuacgaHByoVzAHTPxJNCHVRkhAH4VhbLjgEiwW5bMFe4tvGcGnwk9+6:4+kIAi4IzQJNURkZ7bwwkbMzOwk9t
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2