da1b1f027c3f0546e33eebac3ef3467898b037ad09703ff0f9f88dc133721af5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da1b1f027c3f0546e33eebac3ef3467898b037ad09703ff0f9f88dc133721af5
Size

64KB
Sample

240405-by2vwahc48
MD5

19d35c2246d431b449d1fcd492b1deb4
SHA1

524ee31b890fdea3c66600db4a777b44d405f368
SHA256

da1b1f027c3f0546e33eebac3ef3467898b037ad09703ff0f9f88dc133721af5
SHA512

1a6c699f01d546cbf26d2db38170781f8fd223149335984fed2ae62214e4b36fcb26bb20d2be6c89144781d52100541119d93ba575b8c795e5289a60f01270bc
SSDEEP

768:8KlIwAcdPKy+SsvvzJmV12ph01UeY6D0BBQ1sN1VTsMYzzfXdH2Oq/1H5iYXdnha:/6zXvvzG2QUewBBsozzDfWqc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  da1b1f027c3f0546e33eebac3ef3467898b037ad09703ff0f9f88dc133721af5
- Size
  
  64KB
- MD5
  
  19d35c2246d431b449d1fcd492b1deb4
- SHA1
  
  524ee31b890fdea3c66600db4a777b44d405f368
- SHA256
  
  da1b1f027c3f0546e33eebac3ef3467898b037ad09703ff0f9f88dc133721af5
- SHA512
  
  1a6c699f01d546cbf26d2db38170781f8fd223149335984fed2ae62214e4b36fcb26bb20d2be6c89144781d52100541119d93ba575b8c795e5289a60f01270bc
- SSDEEP
  
  768:8KlIwAcdPKy+SsvvzJmV12ph01UeY6D0BBQ1sN1VTsMYzzfXdH2Oq/1H5iYXdnha:/6zXvvzG2QUewBBsozzDfWqc
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2