0015f6092b6d9a34c55d3009c7c5ea9bfaff31de045f3b549235f325f2ff002f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

33eecd75ad6f5d90d85619920c835d15
Size

128KB
Sample

240409-x3jezsag9z
MD5

33eecd75ad6f5d90d85619920c835d15
SHA1

923e71699c0f082d3039ecf47bdf0c1f26dee9ca
SHA256

0015f6092b6d9a34c55d3009c7c5ea9bfaff31de045f3b549235f325f2ff002f
SHA512

988cf937d60cb47e8e127b264558c5874427b2c58f7d3f2741749e8cb10ed0d32c64909d118401ef135215936c338115e711015249cb93f4542404d95b0ae2ee
SSDEEP

3072:jQIhFCcraD/DibSyvPLu0w8asCHNhMXi6Y0HYSx9m9jqLsFmp:jQIhMcrw/DryHLu02xUS6UJjws6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  33eecd75ad6f5d90d85619920c835d15
- Size
  
  128KB
- MD5
  
  33eecd75ad6f5d90d85619920c835d15
- SHA1
  
  923e71699c0f082d3039ecf47bdf0c1f26dee9ca
- SHA256
  
  0015f6092b6d9a34c55d3009c7c5ea9bfaff31de045f3b549235f325f2ff002f
- SHA512
  
  988cf937d60cb47e8e127b264558c5874427b2c58f7d3f2741749e8cb10ed0d32c64909d118401ef135215936c338115e711015249cb93f4542404d95b0ae2ee
- SSDEEP
  
  3072:jQIhFCcraD/DibSyvPLu0w8asCHNhMXi6Y0HYSx9m9jqLsFmp:jQIhMcrw/DryHLu02xUS6UJjws6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2