66a30934ea2f19b991ce2049de4d4526f125c9391ab2bf7471ab42bdb042eacb | Triage

Sharing

General

Target

66a30934ea2f19b991ce2049de4d4526f125c9391ab2bf7471ab42bdb042eacb
Size

224KB
Sample

240307-zhx4rade28
MD5

1b1bfc15a14dd318a6ab6320fedbd9db
SHA1

0ca657c7a7c89ecc8e0a99450c38de6013408254
SHA256

66a30934ea2f19b991ce2049de4d4526f125c9391ab2bf7471ab42bdb042eacb
SHA512

aebe875e3be3cb2049f0d47895216dfbe80d9fb7ffb26231de4a6f143e85c6fc1811e5d768db74e58e4aa8ac832749cf618492105e932da3b20b48d25e3b0f69
SSDEEP

6144:vXXi8q9gbbWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQcv:PXi8qGbWGRdA6sQhPbWGRdA6sQc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  66a30934ea2f19b991ce2049de4d4526f125c9391ab2bf7471ab42bdb042eacb
- Size
  
  224KB
- MD5
  
  1b1bfc15a14dd318a6ab6320fedbd9db
- SHA1
  
  0ca657c7a7c89ecc8e0a99450c38de6013408254
- SHA256
  
  66a30934ea2f19b991ce2049de4d4526f125c9391ab2bf7471ab42bdb042eacb
- SHA512
  
  aebe875e3be3cb2049f0d47895216dfbe80d9fb7ffb26231de4a6f143e85c6fc1811e5d768db74e58e4aa8ac832749cf618492105e932da3b20b48d25e3b0f69
- SSDEEP
  
  6144:vXXi8q9gbbWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQcv:PXi8qGbWGRdA6sQhPbWGRdA6sQc
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2