89440f94fe9186daba94ebd1bcefeaa1ef9fae3427ae2319672c00a7c7c3a008 | Triage

Sharing

General

Target

89440f94fe9186daba94ebd1bcefeaa1ef9fae3427ae2319672c00a7c7c3a008
Size

80KB
Sample

240319-17cpsahb76
MD5

622f90fe12f57146eb38eec6b41034ac
SHA1

f5c68885667d97fbe8a912e24115028a576225dc
SHA256

89440f94fe9186daba94ebd1bcefeaa1ef9fae3427ae2319672c00a7c7c3a008
SHA512

8fbc6db41af5b9a3978d4fe65e5d87616e415b935e2e00bfcf8aa948bdfb4dd299ab97f9169cc41f2d6d32b42022cb949a1e6ed4248f2de3ae72151dae1239a8
SSDEEP

1536:qXpDCP4ByT/Y9mx22GT2LtIwfi+TjRC/6y:h4Bo/imx22Jewf1TjYD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  89440f94fe9186daba94ebd1bcefeaa1ef9fae3427ae2319672c00a7c7c3a008
- Size
  
  80KB
- MD5
  
  622f90fe12f57146eb38eec6b41034ac
- SHA1
  
  f5c68885667d97fbe8a912e24115028a576225dc
- SHA256
  
  89440f94fe9186daba94ebd1bcefeaa1ef9fae3427ae2319672c00a7c7c3a008
- SHA512
  
  8fbc6db41af5b9a3978d4fe65e5d87616e415b935e2e00bfcf8aa948bdfb4dd299ab97f9169cc41f2d6d32b42022cb949a1e6ed4248f2de3ae72151dae1239a8
- SSDEEP
  
  1536:qXpDCP4ByT/Y9mx22GT2LtIwfi+TjRC/6y:h4Bo/imx22Jewf1TjYD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2