9ce6fc537c09f25ff84d5ac36553596a2e9f6a3d88be7d41ecce7b5e314c9c5d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

52825e30a41f15e97565fb6b43473433
Size

13KB
Sample

240111-ev36baedem
MD5

52825e30a41f15e97565fb6b43473433
SHA1

7cc6e832e466417041370873eacb46d69b7700b6
SHA256

9ce6fc537c09f25ff84d5ac36553596a2e9f6a3d88be7d41ecce7b5e314c9c5d
SHA512

eafb4ac02c524275da7b2a0b2a62881cd735a667af509dbdc55aa7c2d151b4611cb7c4825de8006df9dc518c11ecf6fd3731f0e6c24701d0753f46b555f8d406
SSDEEP

192:hSZAPgKyDrXRkYvwgFIhkVC/iQUizOOBPe+Hp2+e2au5fsjAgDGW+Mp85f0:YBlJks2TU2BWVufajN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  52825e30a41f15e97565fb6b43473433
- Size
  
  13KB
- MD5
  
  52825e30a41f15e97565fb6b43473433
- SHA1
  
  7cc6e832e466417041370873eacb46d69b7700b6
- SHA256
  
  9ce6fc537c09f25ff84d5ac36553596a2e9f6a3d88be7d41ecce7b5e314c9c5d
- SHA512
  
  eafb4ac02c524275da7b2a0b2a62881cd735a667af509dbdc55aa7c2d151b4611cb7c4825de8006df9dc518c11ecf6fd3731f0e6c24701d0753f46b555f8d406
- SSDEEP
  
  192:hSZAPgKyDrXRkYvwgFIhkVC/iQUizOOBPe+Hp2+e2au5fsjAgDGW+Mp85f0:YBlJks2TU2BWVufajN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2