48b19b5f9db6ba9917c826544cf7d82254e6cfb55fd14f494a8c1603fd98ff78 | Triage

Sharing

General

Target

48b19b5f9db6ba9917c826544cf7d82254e6cfb55fd14f494a8c1603fd98ff78
Size

80KB
Sample

240311-z3zs3see5x
MD5

4c0a8dd1a24c95a2c7fb037c6fa7221e
SHA1

edaf566a691686ea32011db93cfd07a1169933e0
SHA256

48b19b5f9db6ba9917c826544cf7d82254e6cfb55fd14f494a8c1603fd98ff78
SHA512

c750f6f5e21cd59f7af4fc994674eef01ce31dfcfcefcb222150323a6f637f9344c016f7cdf1bc87070aa7cc59ba09cf5624ff01f67f7785affc7e8ca5c88b60
SSDEEP

1536:Ctr4yGNlxyzUwOqwANIy0bwmzwj1y0xYus2DQg5YMkhohBE8VGh:gr4hBy3wACy0bwmzwjBrfzUAEQGh

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  48b19b5f9db6ba9917c826544cf7d82254e6cfb55fd14f494a8c1603fd98ff78
- Size
  
  80KB
- MD5
  
  4c0a8dd1a24c95a2c7fb037c6fa7221e
- SHA1
  
  edaf566a691686ea32011db93cfd07a1169933e0
- SHA256
  
  48b19b5f9db6ba9917c826544cf7d82254e6cfb55fd14f494a8c1603fd98ff78
- SHA512
  
  c750f6f5e21cd59f7af4fc994674eef01ce31dfcfcefcb222150323a6f637f9344c016f7cdf1bc87070aa7cc59ba09cf5624ff01f67f7785affc7e8ca5c88b60
- SSDEEP
  
  1536:Ctr4yGNlxyzUwOqwANIy0bwmzwj1y0xYus2DQg5YMkhohBE8VGh:gr4hBy3wACy0bwmzwjBrfzUAEQGh
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2