d9df635c8b2047336d6ab1c62b4e1a59d3879201ab4097d0edc6664105c9614d | Triage

Sharing

General

Target

d9df635c8b2047336d6ab1c62b4e1a59d3879201ab4097d0edc6664105c9614d
Size

144KB
Sample

240311-bklxhagd42
MD5

822e32281a29e1ca3e5b5c263cdd5fa9
SHA1

8ad2100bdd153ad2ee3f10cba5d48cfc28fb8884
SHA256

d9df635c8b2047336d6ab1c62b4e1a59d3879201ab4097d0edc6664105c9614d
SHA512

f7f6c5c474383bc09b6ded8336b418448b59b5b1c2b960db2ac32030c3aa3226efbf2ef600c6c1db46762683b641943ac66383e08f8015b7350da1b84706586f
SSDEEP

3072:fv7KrNTmHiMQH2qC7ZQOlzSLUK6MwGsGnDc9nhVizLrId0:fvKNaHiMQWfdQOhwJ6MwGsmLrId0

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d9df635c8b2047336d6ab1c62b4e1a59d3879201ab4097d0edc6664105c9614d
- Size
  
  144KB
- MD5
  
  822e32281a29e1ca3e5b5c263cdd5fa9
- SHA1
  
  8ad2100bdd153ad2ee3f10cba5d48cfc28fb8884
- SHA256
  
  d9df635c8b2047336d6ab1c62b4e1a59d3879201ab4097d0edc6664105c9614d
- SHA512
  
  f7f6c5c474383bc09b6ded8336b418448b59b5b1c2b960db2ac32030c3aa3226efbf2ef600c6c1db46762683b641943ac66383e08f8015b7350da1b84706586f
- SSDEEP
  
  3072:fv7KrNTmHiMQH2qC7ZQOlzSLUK6MwGsGnDc9nhVizLrId0:fvKNaHiMQWfdQOhwJ6MwGsmLrId0
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2