12c0d2e8a32333b8ccca71a39ebf006ea723f3964065ee34a8ba62243fc225fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12c0d2e8a32333b8ccca71a39ebf006ea723f3964065ee34a8ba62243fc225fc
Size

117KB
Sample

240313-wbnpysdc28
MD5

240b8a7a78ab5e7f49a06dd647d7d895
SHA1

d76df94d9ac64573334fe349d15bc0100c56c815
SHA256

12c0d2e8a32333b8ccca71a39ebf006ea723f3964065ee34a8ba62243fc225fc
SHA512

fdf1ea2050d75328109d103ccd6df49f46122d7feeb8a9a7b6fd6ab137ebc363f6075d117ff286c3603d298c0c2be109e48d11e5ba883b0cf49bdfe41ae17cb6
SSDEEP

1536:LhX5kcSlmvKWceRcPjdIcO6bUSSTYD+D3WHetq+nCCD7lFFfUN1Avhw6JCM:lX+d9jdMmQYDoXtqZylFFfUrQlM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  12c0d2e8a32333b8ccca71a39ebf006ea723f3964065ee34a8ba62243fc225fc
- Size
  
  117KB
- MD5
  
  240b8a7a78ab5e7f49a06dd647d7d895
- SHA1
  
  d76df94d9ac64573334fe349d15bc0100c56c815
- SHA256
  
  12c0d2e8a32333b8ccca71a39ebf006ea723f3964065ee34a8ba62243fc225fc
- SHA512
  
  fdf1ea2050d75328109d103ccd6df49f46122d7feeb8a9a7b6fd6ab137ebc363f6075d117ff286c3603d298c0c2be109e48d11e5ba883b0cf49bdfe41ae17cb6
- SSDEEP
  
  1536:LhX5kcSlmvKWceRcPjdIcO6bUSSTYD+D3WHetq+nCCD7lFFfUN1Avhw6JCM:lX+d9jdMmQYDoXtqZylFFfUrQlM
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2