fad31dda2f16a06b5adf3111a2ed9cbad2460a06884ef1f6b732e337e1126060 | Triage

Sharing

General

Target

fad31dda2f16a06b5adf3111a2ed9cbad2460a06884ef1f6b732e337e1126060
Size

340KB
Sample

240410-ar4v8aed5w
MD5

0ef6b5658162fe026f0b58ad8392e8f5
SHA1

9664fd9ad5c9ed81b619f0a25a247e56c341921f
SHA256

fad31dda2f16a06b5adf3111a2ed9cbad2460a06884ef1f6b732e337e1126060
SHA512

18035009725d2415c940da15a417cf0aadef6f8b5f2f22b8a45ebb66822c39386ab94d219248ca6adb59f6e7ef2bc47199d3b44299f138d53a06f09647bb8c2d
SSDEEP

6144:bh8lCCCCCCc5zIyedZwlNPjLs+H8rtMsQBJyJyymeH:ECCCCCCc2yGZwlNPjLYRMsXJvmeH

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  fad31dda2f16a06b5adf3111a2ed9cbad2460a06884ef1f6b732e337e1126060
- Size
  
  340KB
- MD5
  
  0ef6b5658162fe026f0b58ad8392e8f5
- SHA1
  
  9664fd9ad5c9ed81b619f0a25a247e56c341921f
- SHA256
  
  fad31dda2f16a06b5adf3111a2ed9cbad2460a06884ef1f6b732e337e1126060
- SHA512
  
  18035009725d2415c940da15a417cf0aadef6f8b5f2f22b8a45ebb66822c39386ab94d219248ca6adb59f6e7ef2bc47199d3b44299f138d53a06f09647bb8c2d
- SSDEEP
  
  6144:bh8lCCCCCCc5zIyedZwlNPjLs+H8rtMsQBJyJyymeH:ECCCCCCc2yGZwlNPjLYRMsXJvmeH
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2