acfab6afeab08cb9c480d03ce08d05677019d53c3e9a5b34d40bd9daf24db461 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

acfab6afeab08cb9c480d03ce08d05677019d53c3e9a5b34d40bd9daf24db461
Size

182KB
Sample

240305-3zzwfsdb7z
MD5

a12db2f528ae684a891e0f731d53948c
SHA1

039d2e0b5cb96d912b68b9999f0650d9cee0f4e4
SHA256

acfab6afeab08cb9c480d03ce08d05677019d53c3e9a5b34d40bd9daf24db461
SHA512

49e8fed718b81c1f3e4d6776f77b0ffa335c79ed823c76e811cb30e9d427972c18ad31c95fcb20d02cc44081a0c0df99c14d5a04d9e971bd1d1629f603dcd490
SSDEEP

3072:8nrSwW3sJ3gSLTk9rp1YfoFw3/wjDF1y3gSLTk9:8Obs2nX3jDF17n

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  acfab6afeab08cb9c480d03ce08d05677019d53c3e9a5b34d40bd9daf24db461
- Size
  
  182KB
- MD5
  
  a12db2f528ae684a891e0f731d53948c
- SHA1
  
  039d2e0b5cb96d912b68b9999f0650d9cee0f4e4
- SHA256
  
  acfab6afeab08cb9c480d03ce08d05677019d53c3e9a5b34d40bd9daf24db461
- SHA512
  
  49e8fed718b81c1f3e4d6776f77b0ffa335c79ed823c76e811cb30e9d427972c18ad31c95fcb20d02cc44081a0c0df99c14d5a04d9e971bd1d1629f603dcd490
- SSDEEP
  
  3072:8nrSwW3sJ3gSLTk9rp1YfoFw3/wjDF1y3gSLTk9:8Obs2nX3jDF17n
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2