682c4f60540cc82bfacfb069c2c0cedc35ba82af4f0afc568faf8e6f60a8d47a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e3a131e9d8b303fe56973b29d901250
Size

291KB
Sample

231225-pl731sbcgl
MD5

1e3a131e9d8b303fe56973b29d901250
SHA1

856245adc4337154a569f497e08e66711744731d
SHA256

682c4f60540cc82bfacfb069c2c0cedc35ba82af4f0afc568faf8e6f60a8d47a
SHA512

169a2eb74036c5942d8b37a3a977da3ef75c0c0d9bbbdbf6b687bffa54fd6664de94d0e4924eed3768d26ee68e20d284599e3f95ce559bef0e5e2a3d02db96c3
SSDEEP

6144:vZr7mek11n6xJmPMWhI0Ee4jso/E6ybbYN1n6xJmPMv:vliLhI0EeOso/E3j

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1e3a131e9d8b303fe56973b29d901250
- Size
  
  291KB
- MD5
  
  1e3a131e9d8b303fe56973b29d901250
- SHA1
  
  856245adc4337154a569f497e08e66711744731d
- SHA256
  
  682c4f60540cc82bfacfb069c2c0cedc35ba82af4f0afc568faf8e6f60a8d47a
- SHA512
  
  169a2eb74036c5942d8b37a3a977da3ef75c0c0d9bbbdbf6b687bffa54fd6664de94d0e4924eed3768d26ee68e20d284599e3f95ce559bef0e5e2a3d02db96c3
- SSDEEP
  
  6144:vZr7mek11n6xJmPMWhI0Ee4jso/E6ybbYN1n6xJmPMv:vliLhI0EeOso/E3j
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2