a912f79f70517864a51c194e40a5cf550b4987b82abcd5e55951776b1d4cdeaa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a912f79f70517864a51c194e40a5cf550b4987b82abcd5e55951776b1d4cdeaa
Size

320KB
Sample

240404-3s6qesea21
MD5

45ed35d98232f6c8582651f285ebdf98
SHA1

25a72fc7c2634f685e570833a167f4be6d9815c1
SHA256

a912f79f70517864a51c194e40a5cf550b4987b82abcd5e55951776b1d4cdeaa
SHA512

447043c907c4f13cd9ca5ae1c5e565532c2a2ae93405c6ac501e688475e77d856c4ef224e98469231ea47906c458e9eb6bf3b051830b0ff062dacfdb61947044
SSDEEP

6144:w0wm+iNPXuapoaCPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDSpaH8n:SFQuqFHRFbeE8n

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a912f79f70517864a51c194e40a5cf550b4987b82abcd5e55951776b1d4cdeaa
- Size
  
  320KB
- MD5
  
  45ed35d98232f6c8582651f285ebdf98
- SHA1
  
  25a72fc7c2634f685e570833a167f4be6d9815c1
- SHA256
  
  a912f79f70517864a51c194e40a5cf550b4987b82abcd5e55951776b1d4cdeaa
- SHA512
  
  447043c907c4f13cd9ca5ae1c5e565532c2a2ae93405c6ac501e688475e77d856c4ef224e98469231ea47906c458e9eb6bf3b051830b0ff062dacfdb61947044
- SSDEEP
  
  6144:w0wm+iNPXuapoaCPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDSpaH8n:SFQuqFHRFbeE8n
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2