dac99e962f318f0342fedd8919a35a897d3d5b3d8feaec21e358df5cf4218be3 | Triage

Sharing

General

Target

df414799af1b564827d69b249fcbaf90_exe32.exe
Size

109KB
Sample

231015-yjajeafh4z
MD5

df414799af1b564827d69b249fcbaf90
SHA1

36e86e4037c434cf2dbe8c6c472b09edee73e8ad
SHA256

dac99e962f318f0342fedd8919a35a897d3d5b3d8feaec21e358df5cf4218be3
SHA512

36d79dac164189e6629181cde372d77a4ac88f9bcf8412c75ba144b7ded1a303994e2677efa531aa9bbd7eb17577c9bc4c351a1c2e0152d216fa4444c5cae73f
SSDEEP

3072:tUoTD/q3bUmJ9yLCqwzBu1DjHLMVDqqkSpR:vvob1J9Gwtu1DjrFqhz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  df414799af1b564827d69b249fcbaf90_exe32.exe
- Size
  
  109KB
- MD5
  
  df414799af1b564827d69b249fcbaf90
- SHA1
  
  36e86e4037c434cf2dbe8c6c472b09edee73e8ad
- SHA256
  
  dac99e962f318f0342fedd8919a35a897d3d5b3d8feaec21e358df5cf4218be3
- SHA512
  
  36d79dac164189e6629181cde372d77a4ac88f9bcf8412c75ba144b7ded1a303994e2677efa531aa9bbd7eb17577c9bc4c351a1c2e0152d216fa4444c5cae73f
- SSDEEP
  
  3072:tUoTD/q3bUmJ9yLCqwzBu1DjHLMVDqqkSpR:vvob1J9Gwtu1DjrFqhz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2