941c90c78f0b86fe2df573f5d5ec0edb1539edd9105e4e16355ae0a7c1c6c47f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

941c90c78f0b86fe2df573f5d5ec0edb1539edd9105e4e16355ae0a7c1c6c47f
Size

1.5MB
Sample

240315-1v4mqsca8t
MD5

ca75cb0fcfeb478143b250ab646b4b79
SHA1

63f55968ee531ac671fb795b5318243375cee3b8
SHA256

941c90c78f0b86fe2df573f5d5ec0edb1539edd9105e4e16355ae0a7c1c6c47f
SHA512

9ba9ac3a649eea2a0daa20983756d727ee8bc20b00c40a421244db942797bcd3e94ecce1342943ab673232cabf7add79058d11c65ff009d782766715ce0a2191
SSDEEP

24576:HrOx6Q2xZmk6Ux6Q2xlPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHpz:FlmkIhbazR0vKLXZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  941c90c78f0b86fe2df573f5d5ec0edb1539edd9105e4e16355ae0a7c1c6c47f
- Size
  
  1.5MB
- MD5
  
  ca75cb0fcfeb478143b250ab646b4b79
- SHA1
  
  63f55968ee531ac671fb795b5318243375cee3b8
- SHA256
  
  941c90c78f0b86fe2df573f5d5ec0edb1539edd9105e4e16355ae0a7c1c6c47f
- SHA512
  
  9ba9ac3a649eea2a0daa20983756d727ee8bc20b00c40a421244db942797bcd3e94ecce1342943ab673232cabf7add79058d11c65ff009d782766715ce0a2191
- SSDEEP
  
  24576:HrOx6Q2xZmk6Ux6Q2xlPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHpz:FlmkIhbazR0vKLXZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2