51a129086b973f6bae1bed13d9baf7796be82f59e407fb5a59d3936a31830690 | Triage

Sharing

General

Target

15f4b6ff3ff656fbe205618a25c5fc3c
Size

236KB
Sample

231225-l4nwbabheq
MD5

15f4b6ff3ff656fbe205618a25c5fc3c
SHA1

d0c443afb91af5cd8bbd4bcebc1c9652f6622be9
SHA256

51a129086b973f6bae1bed13d9baf7796be82f59e407fb5a59d3936a31830690
SHA512

dcb9b6fbf5e2202592c30c4286eee51a5f03f85be886860398411c63b7cecd153144236d568411b4898786d0ce86106569bedfaa47959c1bd19867dfbde55392
SSDEEP

3072:SeqmgHwlaazN9U3J+P0wFp+bLrt2wkkIT:+Qj9U3jwO3rt5I

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  15f4b6ff3ff656fbe205618a25c5fc3c
- Size
  
  236KB
- MD5
  
  15f4b6ff3ff656fbe205618a25c5fc3c
- SHA1
  
  d0c443afb91af5cd8bbd4bcebc1c9652f6622be9
- SHA256
  
  51a129086b973f6bae1bed13d9baf7796be82f59e407fb5a59d3936a31830690
- SHA512
  
  dcb9b6fbf5e2202592c30c4286eee51a5f03f85be886860398411c63b7cecd153144236d568411b4898786d0ce86106569bedfaa47959c1bd19867dfbde55392
- SSDEEP
  
  3072:SeqmgHwlaazN9U3J+P0wFp+bLrt2wkkIT:+Qj9U3jwO3rt5I
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2