45aa2717d360a56e639bed69dde828e384dc7559a7c8e36317994a6f0538b950 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

357f44228d2c6345bd5d0a2a9b141ad9
Size

98KB
Sample

240410-gnyclaab21
MD5

357f44228d2c6345bd5d0a2a9b141ad9
SHA1

d48085721383a4178b3d8cce8893ab5bd6dbc80e
SHA256

45aa2717d360a56e639bed69dde828e384dc7559a7c8e36317994a6f0538b950
SHA512

63bc31d828ab0df5e3b68a53596d677e95c1c0f58f8e104ab8ade722154f9bde4bd6c504d97c6bc0c7b2d481f14600add067f6bd24764fa33fc0f2b4de94f372
SSDEEP

3072:DY4i9YqGG3agcZvoiIEVeFKPD375lHzpa1P:enGG0Vo5EVeYr75lHzpaF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  357f44228d2c6345bd5d0a2a9b141ad9
- Size
  
  98KB
- MD5
  
  357f44228d2c6345bd5d0a2a9b141ad9
- SHA1
  
  d48085721383a4178b3d8cce8893ab5bd6dbc80e
- SHA256
  
  45aa2717d360a56e639bed69dde828e384dc7559a7c8e36317994a6f0538b950
- SHA512
  
  63bc31d828ab0df5e3b68a53596d677e95c1c0f58f8e104ab8ade722154f9bde4bd6c504d97c6bc0c7b2d481f14600add067f6bd24764fa33fc0f2b4de94f372
- SSDEEP
  
  3072:DY4i9YqGG3agcZvoiIEVeFKPD375lHzpa1P:enGG0Vo5EVeYr75lHzpaF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2