7f20f11e93a15e622caff5401fd4b52cecd58be7f06f34c2ebc7badf56fbb518 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7f20f11e93a15e622caff5401fd4b52cecd58be7f06f34c2ebc7badf56fbb518
Size

109KB
Sample

240325-yh5yxsge52
MD5

c42adbc8728813e0c0b84af0057e7424
SHA1

a93a71ac6e6219bb94a17aea906cf4e4262cfb07
SHA256

7f20f11e93a15e622caff5401fd4b52cecd58be7f06f34c2ebc7badf56fbb518
SHA512

74c94696de862dad5b01b70c8d0b8cd8fe69d1f6157bc61d1f919ca07cf1f9a1607aead6b2c4e514626d5e6d13faaa1bf0838fe02e386a097e7452f49479a0af
SSDEEP

3072:g00v4fDR1iZf+EeftgYF3J9BLCqwzBu1DjHLMVDqqkSpR:Pk4ffihFefOWJ9Jwtu1DjrFqhz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  7f20f11e93a15e622caff5401fd4b52cecd58be7f06f34c2ebc7badf56fbb518
- Size
  
  109KB
- MD5
  
  c42adbc8728813e0c0b84af0057e7424
- SHA1
  
  a93a71ac6e6219bb94a17aea906cf4e4262cfb07
- SHA256
  
  7f20f11e93a15e622caff5401fd4b52cecd58be7f06f34c2ebc7badf56fbb518
- SHA512
  
  74c94696de862dad5b01b70c8d0b8cd8fe69d1f6157bc61d1f919ca07cf1f9a1607aead6b2c4e514626d5e6d13faaa1bf0838fe02e386a097e7452f49479a0af
- SSDEEP
  
  3072:g00v4fDR1iZf+EeftgYF3J9BLCqwzBu1DjHLMVDqqkSpR:Pk4ffihFefOWJ9Jwtu1DjrFqhz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2