2d28f82c5efd130c7689a2ce8b148600ee81fe40bacd12a4a285ae30a6b625c1 | Triage

Sharing

General

Target

2d28f82c5efd130c7689a2ce8b148600ee81fe40bacd12a4a285ae30a6b625c1
Size

108KB
Sample

240314-w2vwysbd5y
MD5

f73f797ff41c1db53b37aeffcac6e40c
SHA1

6c19def79e7069765f3df5aba4ad2b2921a6418d
SHA256

2d28f82c5efd130c7689a2ce8b148600ee81fe40bacd12a4a285ae30a6b625c1
SHA512

110b66c7e5144065132c9301515379516a657eefddcd28deb7677c0270bd0c27b325e046b1dea4483aaa8338fc1297082127884599adece1e9398e039af92a71
SSDEEP

3072:dsCHS8AD+RbsMX9Ef31OyIKmGzBO6FcFmKcUsvKwF:dsgRbsMX9m3cyIKFMiUs

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2d28f82c5efd130c7689a2ce8b148600ee81fe40bacd12a4a285ae30a6b625c1
- Size
  
  108KB
- MD5
  
  f73f797ff41c1db53b37aeffcac6e40c
- SHA1
  
  6c19def79e7069765f3df5aba4ad2b2921a6418d
- SHA256
  
  2d28f82c5efd130c7689a2ce8b148600ee81fe40bacd12a4a285ae30a6b625c1
- SHA512
  
  110b66c7e5144065132c9301515379516a657eefddcd28deb7677c0270bd0c27b325e046b1dea4483aaa8338fc1297082127884599adece1e9398e039af92a71
- SSDEEP
  
  3072:dsCHS8AD+RbsMX9Ef31OyIKmGzBO6FcFmKcUsvKwF:dsgRbsMX9m3cyIKFMiUs
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2