5088de4c7d7a0efbee195e01b55cbe43a6e6089f072110d347515dd5c16fe31f | Triage

Sharing

General

Target

5088de4c7d7a0efbee195e01b55cbe43a6e6089f072110d347515dd5c16fe31f
Size

352KB
Sample

240409-y1haksch6y
MD5

2c1cf1e3d499231263f49cbf32590ea2
SHA1

42bcbef060a64daf736ab1a61fa82565a27bcdd5
SHA256

5088de4c7d7a0efbee195e01b55cbe43a6e6089f072110d347515dd5c16fe31f
SHA512

b37ba0f1bdb7ff85bc0d37f898e2ebe47bbd7a6d7b20020de89469762777ca02c39013d24696bf1c1f09803968f1539c07718958c5cd8b365ff599f6d1a337a7
SSDEEP

6144:Yxdov+wNkpr1ItvLUErOU7amYBAYpd0ucyEWJrj1mKZHPSv/rpwMBhpNFdFf52S7:Yxd4+hrCZYE6YYBHpd0uD319ZvSntnhV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5088de4c7d7a0efbee195e01b55cbe43a6e6089f072110d347515dd5c16fe31f
- Size
  
  352KB
- MD5
  
  2c1cf1e3d499231263f49cbf32590ea2
- SHA1
  
  42bcbef060a64daf736ab1a61fa82565a27bcdd5
- SHA256
  
  5088de4c7d7a0efbee195e01b55cbe43a6e6089f072110d347515dd5c16fe31f
- SHA512
  
  b37ba0f1bdb7ff85bc0d37f898e2ebe47bbd7a6d7b20020de89469762777ca02c39013d24696bf1c1f09803968f1539c07718958c5cd8b365ff599f6d1a337a7
- SSDEEP
  
  6144:Yxdov+wNkpr1ItvLUErOU7amYBAYpd0ucyEWJrj1mKZHPSv/rpwMBhpNFdFf52S7:Yxd4+hrCZYE6YYBHpd0uD319ZvSntnhV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2