40094a44914b7a99c8739d71a93a53bec72c559d11a6aaaa5a199a73ea93a641 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40094a44914b7a99c8739d71a93a53bec72c559d11a6aaaa5a199a73ea93a641
Size

1.7MB
Sample

230827-dp8yyaha7w
MD5

e8aecb13706765377f7d803741304949
SHA1

40dde8757ad879b3feae2b26f18641e560d82024
SHA256

40094a44914b7a99c8739d71a93a53bec72c559d11a6aaaa5a199a73ea93a641
SHA512

a5d54b23318629cc8d66bcbd98fc31b435cbe2c15722867aa74132f5cf8953772de3b97aae8cca381e3a89a5e53002238df4e1666c9e32290757ceb406f5e760
SSDEEP

24576:MlKmygBrATMXoRnHPWwwMp6aIY4In2VSfAGyuP4SLhSJ1DFe/ZTAnWgMX7LxXJC9:uWG47xIY4u2wfj4SLaReBT/nX7LxXJ

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  40094a44914b7a99c8739d71a93a53bec72c559d11a6aaaa5a199a73ea93a641
- Size
  
  1.7MB
- MD5
  
  e8aecb13706765377f7d803741304949
- SHA1
  
  40dde8757ad879b3feae2b26f18641e560d82024
- SHA256
  
  40094a44914b7a99c8739d71a93a53bec72c559d11a6aaaa5a199a73ea93a641
- SHA512
  
  a5d54b23318629cc8d66bcbd98fc31b435cbe2c15722867aa74132f5cf8953772de3b97aae8cca381e3a89a5e53002238df4e1666c9e32290757ceb406f5e760
- SSDEEP
  
  24576:MlKmygBrATMXoRnHPWwwMp6aIY4In2VSfAGyuP4SLhSJ1DFe/ZTAnWgMX7LxXJC9:uWG47xIY4u2wfj4SLaReBT/nX7LxXJ
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2