a080ef4f86dbec35d2e527c6f49fc8632c72c2bfbfbb1c5c9efe6c6907c29721 | Triage

Sharing

General

Target

878ad8e21f636548abd1febbd8e541c0_exe32.exe
Size

349KB
Sample

231015-ydvbmacg6x
MD5

878ad8e21f636548abd1febbd8e541c0
SHA1

6a3ab8bf53bb5f36e2a6b701bad9a47a3b63e365
SHA256

a080ef4f86dbec35d2e527c6f49fc8632c72c2bfbfbb1c5c9efe6c6907c29721
SHA512

ce37400cae30fc315b64e94504b912dcd926b9a4f8f5610298d10b687aabc3d80caaceac6869d3a0374ad0dd8a544c2a3897a88eb403cb71e75bb7dd4c0e42cf
SSDEEP

6144:B30akAiRs+HsoTh3O64JVw/ekxgu8VZtK036E37JPwS0eeaB7DxB6HkM7ADP5eJI:B30aknQ0h3/4JVw/eK98VZtK03937JPZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  878ad8e21f636548abd1febbd8e541c0_exe32.exe
- Size
  
  349KB
- MD5
  
  878ad8e21f636548abd1febbd8e541c0
- SHA1
  
  6a3ab8bf53bb5f36e2a6b701bad9a47a3b63e365
- SHA256
  
  a080ef4f86dbec35d2e527c6f49fc8632c72c2bfbfbb1c5c9efe6c6907c29721
- SHA512
  
  ce37400cae30fc315b64e94504b912dcd926b9a4f8f5610298d10b687aabc3d80caaceac6869d3a0374ad0dd8a544c2a3897a88eb403cb71e75bb7dd4c0e42cf
- SSDEEP
  
  6144:B30akAiRs+HsoTh3O64JVw/ekxgu8VZtK036E37JPwS0eeaB7DxB6HkM7ADP5eJI:B30aknQ0h3/4JVw/eK98VZtK03937JPZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2