7afc56503cc252b1ff6de1bb1c440dc48b8715691cc630bb393d0a6d4530b6ed | Triage

Sharing

General

Target

7afc56503cc252b1ff6de1bb1c440dc48b8715691cc630bb393d0a6d4530b6ed
Size

144KB
Sample

240328-13x5xsaf25
MD5

ab43af0002180f574d8a8ed01693893c
SHA1

86a17cececb1094a73a97c5592b0144c17b36e25
SHA256

7afc56503cc252b1ff6de1bb1c440dc48b8715691cc630bb393d0a6d4530b6ed
SHA512

1de6c3fcd6c1159854cc2474d87c6a7d11800820f9c79c04a87a7fe66663818632bc10a0f7f291e44f9efe243b03969f01cf398949815acad4b13c24680b9678
SSDEEP

3072:U9ISfyjNtgC2+IJkMi/T3gUgHq/Wp+YmKfxgQdxvq:TSwPv2LiTgUUmKyIxi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  7afc56503cc252b1ff6de1bb1c440dc48b8715691cc630bb393d0a6d4530b6ed
- Size
  
  144KB
- MD5
  
  ab43af0002180f574d8a8ed01693893c
- SHA1
  
  86a17cececb1094a73a97c5592b0144c17b36e25
- SHA256
  
  7afc56503cc252b1ff6de1bb1c440dc48b8715691cc630bb393d0a6d4530b6ed
- SHA512
  
  1de6c3fcd6c1159854cc2474d87c6a7d11800820f9c79c04a87a7fe66663818632bc10a0f7f291e44f9efe243b03969f01cf398949815acad4b13c24680b9678
- SSDEEP
  
  3072:U9ISfyjNtgC2+IJkMi/T3gUgHq/Wp+YmKfxgQdxvq:TSwPv2LiTgUUmKyIxi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2