188a936b3248f07d9e90aeb7f7bd882979e3f012fb8aad338e19bdaff9ff1dee | Triage

Sharing

General

Target

188a936b3248f07d9e90aeb7f7bd882979e3f012fb8aad338e19bdaff9ff1dee
Size

1020KB
Sample

240326-wes4vaga89
MD5

1f0af073a0f2af8e787f0a64abe51723
SHA1

770bb14e5e849a760271d86299f1e821cfbeb319
SHA256

188a936b3248f07d9e90aeb7f7bd882979e3f012fb8aad338e19bdaff9ff1dee
SHA512

3a4bc42bc056b6706d1d90fa719c838764a553f736a0e4acae4df6b8511e9073514180b09834b57fddb757c98850568d8955b471987c990ddd6130da555cabd9
SSDEEP

24576:82mHxfyvzecrHPh2kkkkK4kXkkkkkkkkhLX3a20R0i:82mHxfyvKcrXbazR0i

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  188a936b3248f07d9e90aeb7f7bd882979e3f012fb8aad338e19bdaff9ff1dee
- Size
  
  1020KB
- MD5
  
  1f0af073a0f2af8e787f0a64abe51723
- SHA1
  
  770bb14e5e849a760271d86299f1e821cfbeb319
- SHA256
  
  188a936b3248f07d9e90aeb7f7bd882979e3f012fb8aad338e19bdaff9ff1dee
- SHA512
  
  3a4bc42bc056b6706d1d90fa719c838764a553f736a0e4acae4df6b8511e9073514180b09834b57fddb757c98850568d8955b471987c990ddd6130da555cabd9
- SSDEEP
  
  24576:82mHxfyvzecrHPh2kkkkK4kXkkkkkkkkhLX3a20R0i:82mHxfyvKcrXbazR0i
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2