78a1263609496f950fc5b7a2f7bba69577ea343d2efc59c23bbbbc5c3a8f5094 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

78a1263609496f950fc5b7a2f7bba69577ea343d2efc59c23bbbbc5c3a8f5094
Size

110KB
Sample

240311-22746sbb32
MD5

e0c7397d56c741d925c7077fe71bd956
SHA1

3d9f4a3e6fb4b9b4c260c526d36229b8dddb760a
SHA256

78a1263609496f950fc5b7a2f7bba69577ea343d2efc59c23bbbbc5c3a8f5094
SHA512

f5bbe71da6f932d0a990227221bd6c24ec8b36fdc38ac7c5df2fb509ee1c5c636043d81ac256cc3c5041686d30d493b8b753ad378834d366cdd825d635807b5c
SSDEEP

1536:Xboildpg2mK0Q9cEDY3i73tDKv0CMnJTcTVB9t8BciDM8Vq9klcIXfMY:XEiG2mK06cCYq0PieTLJiXSk6IXP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  78a1263609496f950fc5b7a2f7bba69577ea343d2efc59c23bbbbc5c3a8f5094
- Size
  
  110KB
- MD5
  
  e0c7397d56c741d925c7077fe71bd956
- SHA1
  
  3d9f4a3e6fb4b9b4c260c526d36229b8dddb760a
- SHA256
  
  78a1263609496f950fc5b7a2f7bba69577ea343d2efc59c23bbbbc5c3a8f5094
- SHA512
  
  f5bbe71da6f932d0a990227221bd6c24ec8b36fdc38ac7c5df2fb509ee1c5c636043d81ac256cc3c5041686d30d493b8b753ad378834d366cdd825d635807b5c
- SSDEEP
  
  1536:Xboildpg2mK0Q9cEDY3i73tDKv0CMnJTcTVB9t8BciDM8Vq9klcIXfMY:XEiG2mK06cCYq0PieTLJiXSk6IXP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2