9ff50418f8d181aae09ed38f30478aaeba9e295a777a520887714bcb12b44997 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9ff50418f8d181aae09ed38f30478aaeba9e295a777a520887714bcb12b44997
Size

461KB
Sample

240319-kffdlaeh75
MD5

b4c10d47679cb59053ffb097696ed594
SHA1

987a99e24f02165bc759b2b4eaada724912c6d1b
SHA256

9ff50418f8d181aae09ed38f30478aaeba9e295a777a520887714bcb12b44997
SHA512

08b538b8ff341f4aefbc432c0435db2821309254f766676014af945e00186d3a031768bce4f6c270b8d0fb675ec55306dfb59bd730698e29a15263f3b988fd7d
SSDEEP

6144:D131LC6S8HEUgNQVizUgNQDVi3ULUgNQPi3UPUgNQViEUjUgN:DP9SdNiUJ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9ff50418f8d181aae09ed38f30478aaeba9e295a777a520887714bcb12b44997
- Size
  
  461KB
- MD5
  
  b4c10d47679cb59053ffb097696ed594
- SHA1
  
  987a99e24f02165bc759b2b4eaada724912c6d1b
- SHA256
  
  9ff50418f8d181aae09ed38f30478aaeba9e295a777a520887714bcb12b44997
- SHA512
  
  08b538b8ff341f4aefbc432c0435db2821309254f766676014af945e00186d3a031768bce4f6c270b8d0fb675ec55306dfb59bd730698e29a15263f3b988fd7d
- SSDEEP
  
  6144:D131LC6S8HEUgNQVizUgNQDVi3ULUgNQPi3UPUgNQViEUjUgN:DP9SdNiUJ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2