b4a25559974935eb2b144a19a24c7192c8d9b4926dc18b00f386f12018cb412f | Triage

Sharing

General

Target

af1ff45fc3e7cb3f5523424a6ce94e21.exe
Size

222KB
Sample

240105-shqakseecj
MD5

af1ff45fc3e7cb3f5523424a6ce94e21
SHA1

664dbff5b1946c0ce2a9a0efe59849610a8a8b8e
SHA256

b4a25559974935eb2b144a19a24c7192c8d9b4926dc18b00f386f12018cb412f
SHA512

33efeedfb76b3b82af9822e47ccc157ea0581532dbb4368a9ba2fb3209a33a7642c01f13761236ae77ef8278e30dc0e9cbf2ccfa55677923133747a81a8ac986
SSDEEP

3072:tpjAFM5NH4Q8mxRLm0MLWHCsXSwBtZjud4Q8mxRLm0M:TAFYNH4Q8mxR7MLWixwBni4Q8mxR7M

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  af1ff45fc3e7cb3f5523424a6ce94e21.exe
- Size
  
  222KB
- MD5
  
  af1ff45fc3e7cb3f5523424a6ce94e21
- SHA1
  
  664dbff5b1946c0ce2a9a0efe59849610a8a8b8e
- SHA256
  
  b4a25559974935eb2b144a19a24c7192c8d9b4926dc18b00f386f12018cb412f
- SHA512
  
  33efeedfb76b3b82af9822e47ccc157ea0581532dbb4368a9ba2fb3209a33a7642c01f13761236ae77ef8278e30dc0e9cbf2ccfa55677923133747a81a8ac986
- SSDEEP
  
  3072:tpjAFM5NH4Q8mxRLm0MLWHCsXSwBtZjud4Q8mxRLm0M:TAFYNH4Q8mxR7MLWixwBni4Q8mxR7M
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2