d03be044ef248cf8ecf5d8205d56030483b7a01876383f2d69889b3f09ffd569 | Triage

Sharing

General

Target

d03be044ef248cf8ecf5d8205d56030483b7a01876383f2d69889b3f09ffd569
Size

109KB
Sample

240405-bjq5tsgf26
MD5

1dc4e150a6a47ca4b0fc470aeff7279d
SHA1

313231fadad07dceb2f0f69ab8679855673ac51e
SHA256

d03be044ef248cf8ecf5d8205d56030483b7a01876383f2d69889b3f09ffd569
SHA512

a1f3f31cf2c46d27bad92a1b03aad2da089cb637916a0ecb3104e82b48c65bf0597554a0101d7c20c74d8f3c94af44a43946b6eaa76f2108b34e444598eccd77
SSDEEP

3072:aeJD+aqA5hcCnIwJ9KLCqwzBu1DjHLMVDqqkSpR:bJDHsQJ9+wtu1DjrFqhz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d03be044ef248cf8ecf5d8205d56030483b7a01876383f2d69889b3f09ffd569
- Size
  
  109KB
- MD5
  
  1dc4e150a6a47ca4b0fc470aeff7279d
- SHA1
  
  313231fadad07dceb2f0f69ab8679855673ac51e
- SHA256
  
  d03be044ef248cf8ecf5d8205d56030483b7a01876383f2d69889b3f09ffd569
- SHA512
  
  a1f3f31cf2c46d27bad92a1b03aad2da089cb637916a0ecb3104e82b48c65bf0597554a0101d7c20c74d8f3c94af44a43946b6eaa76f2108b34e444598eccd77
- SSDEEP
  
  3072:aeJD+aqA5hcCnIwJ9KLCqwzBu1DjHLMVDqqkSpR:bJDHsQJ9+wtu1DjrFqhz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2