a2989de8f2fd2c8a96ef6230cdf009aafc69542ed6a37832ced57899a1238453 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2989de8f2fd2c8a96ef6230cdf009aafc69542ed6a37832ced57899a1238453
Size

232KB
Sample

240319-27e1ksab67
MD5

1864a6da817fafb66544e69869b68272
SHA1

7a58a93df3c4bddf335d1db862c3c3209ce1b517
SHA256

a2989de8f2fd2c8a96ef6230cdf009aafc69542ed6a37832ced57899a1238453
SHA512

c843dfc4bcd7ad7a45f2becc6841e23f71408bff2f470213687003a7fdc140627b91990544b3d809bd12d048d0ea1b155f1450f7d6ee122f4e44e1f0a4b23f17
SSDEEP

3072:Z8K7CowC0g7z07usluTXp6UF5wzec+tZOnU1/s5HH0AU/yRvS3u121TzlbNRfzPX:Zj+7K7z06s21L7/s50z/Wa3/PNlPX

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a2989de8f2fd2c8a96ef6230cdf009aafc69542ed6a37832ced57899a1238453
- Size
  
  232KB
- MD5
  
  1864a6da817fafb66544e69869b68272
- SHA1
  
  7a58a93df3c4bddf335d1db862c3c3209ce1b517
- SHA256
  
  a2989de8f2fd2c8a96ef6230cdf009aafc69542ed6a37832ced57899a1238453
- SHA512
  
  c843dfc4bcd7ad7a45f2becc6841e23f71408bff2f470213687003a7fdc140627b91990544b3d809bd12d048d0ea1b155f1450f7d6ee122f4e44e1f0a4b23f17
- SSDEEP
  
  3072:Z8K7CowC0g7z07usluTXp6UF5wzec+tZOnU1/s5HH0AU/yRvS3u121TzlbNRfzPX:Zj+7K7z06s21L7/s50z/Wa3/PNlPX
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2