f9a29b9b17b8b99c950856ed1dcdb8702e2a8907ef8cc9d8841a8a1a8a6d7c51 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

acef5c32cf6893564fe2777a02477ad8.exe
Size

176KB
Sample

240101-zb2hlaaacr
MD5

acef5c32cf6893564fe2777a02477ad8
SHA1

4dd4414074d29a27198c467c66900c6a893b5e60
SHA256

f9a29b9b17b8b99c950856ed1dcdb8702e2a8907ef8cc9d8841a8a1a8a6d7c51
SHA512

1434a9bbfc00fbdca983e4f561d9019c025f69a3bd44c732b942dd8c8bbebd9aeb8cd4b00f8dd84ac99f826307b0ffb3014d9166ff8285fc8af623946d710cf4
SSDEEP

3072:Vl7/iuMI9wiYgRdTXnparlOGA8d2E2fAYjmjRrz3E3:zLuIKUdTXnpRXE2fAEG4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  acef5c32cf6893564fe2777a02477ad8.exe
- Size
  
  176KB
- MD5
  
  acef5c32cf6893564fe2777a02477ad8
- SHA1
  
  4dd4414074d29a27198c467c66900c6a893b5e60
- SHA256
  
  f9a29b9b17b8b99c950856ed1dcdb8702e2a8907ef8cc9d8841a8a1a8a6d7c51
- SHA512
  
  1434a9bbfc00fbdca983e4f561d9019c025f69a3bd44c732b942dd8c8bbebd9aeb8cd4b00f8dd84ac99f826307b0ffb3014d9166ff8285fc8af623946d710cf4
- SSDEEP
  
  3072:Vl7/iuMI9wiYgRdTXnparlOGA8d2E2fAYjmjRrz3E3:zLuIKUdTXnpRXE2fAEG4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2