15aff46dec3142c5ac6aa266a48dbe2cd15d57f230b4007702808a4d5ad7d7df | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15aff46dec3142c5ac6aa266a48dbe2cd15d57f230b4007702808a4d5ad7d7df
Size

192KB
Sample

240404-xe5y3sfg92
MD5

0bf38c2ee1d97194b7e60c70257b0ab3
SHA1

72d1307a30a5f750be41b9b305438d2054c3d374
SHA256

15aff46dec3142c5ac6aa266a48dbe2cd15d57f230b4007702808a4d5ad7d7df
SHA512

558a8c7b1228ded6a7985dc4d5d4b13f3d0776841240c333f22524e07f743360e2416be6e1c2e698b3aadab002b37ef34e4e371a84173ad983254c3512b636dc
SSDEEP

3072:nCluEPeJr4MKy3G7UEqMM6T9pui6yYPaI7DehizrVtNe8ohrQ3N:CluJindpui6yYPaIGckfruN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  15aff46dec3142c5ac6aa266a48dbe2cd15d57f230b4007702808a4d5ad7d7df
- Size
  
  192KB
- MD5
  
  0bf38c2ee1d97194b7e60c70257b0ab3
- SHA1
  
  72d1307a30a5f750be41b9b305438d2054c3d374
- SHA256
  
  15aff46dec3142c5ac6aa266a48dbe2cd15d57f230b4007702808a4d5ad7d7df
- SHA512
  
  558a8c7b1228ded6a7985dc4d5d4b13f3d0776841240c333f22524e07f743360e2416be6e1c2e698b3aadab002b37ef34e4e371a84173ad983254c3512b636dc
- SSDEEP
  
  3072:nCluEPeJr4MKy3G7UEqMM6T9pui6yYPaI7DehizrVtNe8ohrQ3N:CluJindpui6yYPaIGckfruN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2