a2d924c7f58147373abf67b5e8e0ed13de436ae3e01b54bd4611fd41454440e8 | Triage

Sharing

General

Target

a2d924c7f58147373abf67b5e8e0ed13de436ae3e01b54bd4611fd41454440e8
Size

477KB
Sample

240314-13t39sgg4z
MD5

247bfe58a23bdcfbfff373870565af04
SHA1

2034a2319e3990d7a04cf681ef7ced7ab1ca4532
SHA256

a2d924c7f58147373abf67b5e8e0ed13de436ae3e01b54bd4611fd41454440e8
SHA512

fa24896a4462d0724e29da84b50bd6ba5df38faaaf406f4dd769b2c1e020750cd2b1766ab7be64d07e234f4c5fe0b14cf294d824c90c4e1bdbf37e430ca5271c
SSDEEP

6144:aLkUFPsP1oBn/TNId/1fon/T2oI0YokOsfY7Uony:apPNNIVy2oIvPKO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a2d924c7f58147373abf67b5e8e0ed13de436ae3e01b54bd4611fd41454440e8
- Size
  
  477KB
- MD5
  
  247bfe58a23bdcfbfff373870565af04
- SHA1
  
  2034a2319e3990d7a04cf681ef7ced7ab1ca4532
- SHA256
  
  a2d924c7f58147373abf67b5e8e0ed13de436ae3e01b54bd4611fd41454440e8
- SHA512
  
  fa24896a4462d0724e29da84b50bd6ba5df38faaaf406f4dd769b2c1e020750cd2b1766ab7be64d07e234f4c5fe0b14cf294d824c90c4e1bdbf37e430ca5271c
- SSDEEP
  
  6144:aLkUFPsP1oBn/TNId/1fon/T2oI0YokOsfY7Uony:apPNNIVy2oIvPKO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2