e86a6b5b60f99e3a90c5dff689c5dd1597aa3a187b71d13467a0133b40be500a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

128b787ac336981a6646072c29fcc4e5.exe
Size

246KB
Sample

231127-vedhqaac27
MD5

128b787ac336981a6646072c29fcc4e5
SHA1

44f42bf26be3a405451f36fd8d0aa497588932b8
SHA256

e86a6b5b60f99e3a90c5dff689c5dd1597aa3a187b71d13467a0133b40be500a
SHA512

9b8aea7fea34d4aaf65d2ecfccd7e3b316892b1b33b6c8e47adf8db8eeeb7a6ec57a86bdb394dcf7ea6aca86db7b638c52c6bed4409291af9d4d8d396c2ca783
SSDEEP

3072:o0zDmUJFztTR+m2B1xdLm102VZjuajDMyap9jCyFsWteYCWS3OF9HqoX:pusFztTR+m2B1xBm102VQlterS9HrX

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  128b787ac336981a6646072c29fcc4e5.exe
- Size
  
  246KB
- MD5
  
  128b787ac336981a6646072c29fcc4e5
- SHA1
  
  44f42bf26be3a405451f36fd8d0aa497588932b8
- SHA256
  
  e86a6b5b60f99e3a90c5dff689c5dd1597aa3a187b71d13467a0133b40be500a
- SHA512
  
  9b8aea7fea34d4aaf65d2ecfccd7e3b316892b1b33b6c8e47adf8db8eeeb7a6ec57a86bdb394dcf7ea6aca86db7b638c52c6bed4409291af9d4d8d396c2ca783
- SSDEEP
  
  3072:o0zDmUJFztTR+m2B1xdLm102VZjuajDMyap9jCyFsWteYCWS3OF9HqoX:pusFztTR+m2B1xBm102VQlterS9HrX
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2