966ae738a56d8de19fe62310b56acc8510d93ccab2a809e4af81ec3f44dd3565 | Triage

Sharing

General

Target

966ae738a56d8de19fe62310b56acc8510d93ccab2a809e4af81ec3f44dd3565
Size

93KB
Sample

240326-2n5rwshc9v
MD5

33bdedff6dc24b6a4ee5070b1afcd96b
SHA1

e3360269aa8193446931de3d46ce2f2a2c22ece7
SHA256

966ae738a56d8de19fe62310b56acc8510d93ccab2a809e4af81ec3f44dd3565
SHA512

f8320b91782210ff87832a207d6c8864a1557d98d61256cb9cbff38f490f8e52553ce8eadb4cd153f014988df7355ba38f5961c0723e35fa65a91b630ad30062
SSDEEP

1536:Pd+O0Z5VNiKSasWS+g1tmlaB1/PF9msRQpRkRLJzeLD9N0iQGRNQR8RyV+32r:Pd+OSIrWS+ctP/PF9NepSJdEN0s4WE+3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  966ae738a56d8de19fe62310b56acc8510d93ccab2a809e4af81ec3f44dd3565
- Size
  
  93KB
- MD5
  
  33bdedff6dc24b6a4ee5070b1afcd96b
- SHA1
  
  e3360269aa8193446931de3d46ce2f2a2c22ece7
- SHA256
  
  966ae738a56d8de19fe62310b56acc8510d93ccab2a809e4af81ec3f44dd3565
- SHA512
  
  f8320b91782210ff87832a207d6c8864a1557d98d61256cb9cbff38f490f8e52553ce8eadb4cd153f014988df7355ba38f5961c0723e35fa65a91b630ad30062
- SSDEEP
  
  1536:Pd+O0Z5VNiKSasWS+g1tmlaB1/PF9msRQpRkRLJzeLD9N0iQGRNQR8RyV+32r:Pd+OSIrWS+ctP/PF9NepSJdEN0s4WE+3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2