4dadaeaddb6c26a701a8df6825100fe8c4523910188e14d4185e4ddbb3a0cd88 | Triage

Sharing

General

Target

2152c8b60455c7ee2135d511b0e9fad5
Size

320KB
Sample

240410-gf5rpsec83
MD5

2152c8b60455c7ee2135d511b0e9fad5
SHA1

aa1cc93d90c3841341be2c2bc3dd428d5a047e27
SHA256

4dadaeaddb6c26a701a8df6825100fe8c4523910188e14d4185e4ddbb3a0cd88
SHA512

cdc8c79b925d4fb555fc9ec99a3be23f20d486902bc67ca20481fa43c1837bb5164c6e5fd8497139ee0995986842ec144a448848461dfc473f3830bc5bff7a8a
SSDEEP

6144:FK2ZGaSPXuapoaCPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDSpaH8n:FHZGbuqFHRFbeE8n

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2152c8b60455c7ee2135d511b0e9fad5
- Size
  
  320KB
- MD5
  
  2152c8b60455c7ee2135d511b0e9fad5
- SHA1
  
  aa1cc93d90c3841341be2c2bc3dd428d5a047e27
- SHA256
  
  4dadaeaddb6c26a701a8df6825100fe8c4523910188e14d4185e4ddbb3a0cd88
- SHA512
  
  cdc8c79b925d4fb555fc9ec99a3be23f20d486902bc67ca20481fa43c1837bb5164c6e5fd8497139ee0995986842ec144a448848461dfc473f3830bc5bff7a8a
- SSDEEP
  
  6144:FK2ZGaSPXuapoaCPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDSpaH8n:FHZGbuqFHRFbeE8n
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2