488c072b20441c081435be89f82f4789135729a0ae3fc1015f496d7a321e4c4a | Triage

Sharing

General

Target

d7008067746ea693dfc3f44b8b6a8d6f.exe
Size

427KB
Sample

231230-xlwnzsbggp
MD5

d7008067746ea693dfc3f44b8b6a8d6f
SHA1

edba92d47bfb585e812fe997a434bebba9cdaa75
SHA256

488c072b20441c081435be89f82f4789135729a0ae3fc1015f496d7a321e4c4a
SHA512

5e3d79612b174c324438d0b53967977dcc04d5f8a021218da86b3ca19108f77835b22a775d98d5742982891243412a092011d8e74e5667b7ce8ccd913d52be98
SSDEEP

6144:PY+xmmavakuBASTYaT15f7o+STYaT15fAK8yfMx/D4LJZPlVcxqy1:gU9avapTTYapJoTYapz8ye49vWq

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d7008067746ea693dfc3f44b8b6a8d6f.exe
- Size
  
  427KB
- MD5
  
  d7008067746ea693dfc3f44b8b6a8d6f
- SHA1
  
  edba92d47bfb585e812fe997a434bebba9cdaa75
- SHA256
  
  488c072b20441c081435be89f82f4789135729a0ae3fc1015f496d7a321e4c4a
- SHA512
  
  5e3d79612b174c324438d0b53967977dcc04d5f8a021218da86b3ca19108f77835b22a775d98d5742982891243412a092011d8e74e5667b7ce8ccd913d52be98
- SSDEEP
  
  6144:PY+xmmavakuBASTYaT15f7o+STYaT15fAK8yfMx/D4LJZPlVcxqy1:gU9avapTTYapJoTYapz8ye49vWq
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2