49910615285ced3622d1f15fcf791e701e8471c7a04939feb03509901b454104 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49910615285ced3622d1f15fcf791e701e8471c7a04939feb03509901b454104
Size

250KB
Sample

240314-x272yscg4y
MD5

a30daafaae0a3842639329da41304044
SHA1

0782f6be6e628001ebb79ea71d8b65fb944ba920
SHA256

49910615285ced3622d1f15fcf791e701e8471c7a04939feb03509901b454104
SHA512

727b1ae4ebed101c66a6838924418530b8400f59a8f1fce47aeca7cf4b96a5db6c1de0a309cc9152e93409dcd09389cedf9c9f23fb4a7ad6f9bada4c83fca893
SSDEEP

6144:lXvZ9naaR4vCvfmZ7KRRRGBCvfmZ7KFpNlJTBCvfmZ7d:lXa6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  49910615285ced3622d1f15fcf791e701e8471c7a04939feb03509901b454104
- Size
  
  250KB
- MD5
  
  a30daafaae0a3842639329da41304044
- SHA1
  
  0782f6be6e628001ebb79ea71d8b65fb944ba920
- SHA256
  
  49910615285ced3622d1f15fcf791e701e8471c7a04939feb03509901b454104
- SHA512
  
  727b1ae4ebed101c66a6838924418530b8400f59a8f1fce47aeca7cf4b96a5db6c1de0a309cc9152e93409dcd09389cedf9c9f23fb4a7ad6f9bada4c83fca893
- SSDEEP
  
  6144:lXvZ9naaR4vCvfmZ7KRRRGBCvfmZ7KFpNlJTBCvfmZ7d:lXa6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2