673b8fb4c1069252bb7a89c1ededcf4c614269fb1d2dac1fc28f9bb5c1331383 | Triage

Sharing

General

Target

673b8fb4c1069252bb7a89c1ededcf4c614269fb1d2dac1fc28f9bb5c1331383
Size

64KB
Sample

240319-hlvz5adf21
MD5

36cc03d5b041cee70e0ba1db7c4b092b
SHA1

557221e2ab4d52c30c5a792c597b1e980ff3fd13
SHA256

673b8fb4c1069252bb7a89c1ededcf4c614269fb1d2dac1fc28f9bb5c1331383
SHA512

422ac46ab02b760915ee57ffefff9dd05825f65dfee94b564f6781f4ef1b878ab91c34c3515fd1cc8a2eb774f86ea26ce0499f25a4039d0c26ec0818a376c92e
SSDEEP

1536:jvkISBOQdb8+My+dXhCrGZYvljYE8Rm0Z:jvM448svljY/m0Z

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  673b8fb4c1069252bb7a89c1ededcf4c614269fb1d2dac1fc28f9bb5c1331383
- Size
  
  64KB
- MD5
  
  36cc03d5b041cee70e0ba1db7c4b092b
- SHA1
  
  557221e2ab4d52c30c5a792c597b1e980ff3fd13
- SHA256
  
  673b8fb4c1069252bb7a89c1ededcf4c614269fb1d2dac1fc28f9bb5c1331383
- SHA512
  
  422ac46ab02b760915ee57ffefff9dd05825f65dfee94b564f6781f4ef1b878ab91c34c3515fd1cc8a2eb774f86ea26ce0499f25a4039d0c26ec0818a376c92e
- SSDEEP
  
  1536:jvkISBOQdb8+My+dXhCrGZYvljYE8Rm0Z:jvM448svljY/m0Z
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2