b70a25029597e6022aec6d9d6b25cced6ace4788872bfc7a53fdab8849d63e6e | Triage

Sharing

General

Target

b70a25029597e6022aec6d9d6b25cced6ace4788872bfc7a53fdab8849d63e6e
Size

123KB
Sample

240315-258vwade6t
MD5

c8ac7c8522ba625e7e186feb18c6ac16
SHA1

d5ed25c2476eb40419ddf9f00dac298e07fe319d
SHA256

b70a25029597e6022aec6d9d6b25cced6ace4788872bfc7a53fdab8849d63e6e
SHA512

47eb2d0cfb9f0dd77cf8ce5300ca96a754025329377410eb240114d1ba967c8c94e61e658b3f479e822bebf5c0b08b94c4bf11e1b13014cb3f5c532cfb4eb535
SSDEEP

3072:YnLFhrDAFZ7u2tVY9rV27L4PCIRYSa9rR85DEn5k7r8:YLDgDBLR4D4rQD85k/8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b70a25029597e6022aec6d9d6b25cced6ace4788872bfc7a53fdab8849d63e6e
- Size
  
  123KB
- MD5
  
  c8ac7c8522ba625e7e186feb18c6ac16
- SHA1
  
  d5ed25c2476eb40419ddf9f00dac298e07fe319d
- SHA256
  
  b70a25029597e6022aec6d9d6b25cced6ace4788872bfc7a53fdab8849d63e6e
- SHA512
  
  47eb2d0cfb9f0dd77cf8ce5300ca96a754025329377410eb240114d1ba967c8c94e61e658b3f479e822bebf5c0b08b94c4bf11e1b13014cb3f5c532cfb4eb535
- SSDEEP
  
  3072:YnLFhrDAFZ7u2tVY9rV27L4PCIRYSa9rR85DEn5k7r8:YLDgDBLR4D4rQD85k/8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2