2d70aab1e95fb9424059b07aa8fedd1af356acd95cce1e112d328d87349571ed | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d70aab1e95fb9424059b07aa8fedd1af356acd95cce1e112d328d87349571ed
Size

896KB
Sample

240308-w3j6vaed7v
MD5

bd152c081acd1310eafbb2d513226f7f
SHA1

c19cae449d2eba4d3b7c08d8330443382bee715f
SHA256

2d70aab1e95fb9424059b07aa8fedd1af356acd95cce1e112d328d87349571ed
SHA512

7fa916f9488537b6f3dd7d09c9529f6e61eb4172561614f0afa4b354514894a88c5ef6fbdf25ef03c00d3ed8e0c1425a8e65a1bdf92748658110b9c1ce66fff1
SSDEEP

12288:nwmzHh7GByvNv54B9f01ZmHByvNv5VwLonfBHLqF1Nw5ILonfByvNv5HV:RzHh7lvr4B9f01ZmQvrUENOVvr1

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2d70aab1e95fb9424059b07aa8fedd1af356acd95cce1e112d328d87349571ed
- Size
  
  896KB
- MD5
  
  bd152c081acd1310eafbb2d513226f7f
- SHA1
  
  c19cae449d2eba4d3b7c08d8330443382bee715f
- SHA256
  
  2d70aab1e95fb9424059b07aa8fedd1af356acd95cce1e112d328d87349571ed
- SHA512
  
  7fa916f9488537b6f3dd7d09c9529f6e61eb4172561614f0afa4b354514894a88c5ef6fbdf25ef03c00d3ed8e0c1425a8e65a1bdf92748658110b9c1ce66fff1
- SSDEEP
  
  12288:nwmzHh7GByvNv54B9f01ZmHByvNv5VwLonfBHLqF1Nw5ILonfByvNv5HV:RzHh7lvr4B9f01ZmQvrUENOVvr1
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2