da4e60ec3f16059aa0e240c184ccea8da53afbc733d6212e3c67d087b0668b5d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da4e60ec3f16059aa0e240c184ccea8da53afbc733d6212e3c67d087b0668b5d
Size

71KB
Sample

240411-dz2bvaba94
MD5

c817d35791591e724ed9f59986d4b2da
SHA1

f968ac3a7ab27dea2d46751acb88a408ecabb2d2
SHA256

da4e60ec3f16059aa0e240c184ccea8da53afbc733d6212e3c67d087b0668b5d
SHA512

0cc6d6d191401c52ba7801efe3edc0f60ffe45f1e72f04c1dd21acee15e8c7ea1b3837a4574604e63ed49b27a43e3a6f3e2208aa05f0b35b6eefb56f3b0466e7
SSDEEP

768:1t4I1uRmzuiGNfWzmLdNGPH+4qMAOmYLVqUdQZv+WBQxPzLRf1skBVm6+Tm2p/1S:1FB/PH+4TLVqUdQh+ds22L3N7RZObZUS

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  da4e60ec3f16059aa0e240c184ccea8da53afbc733d6212e3c67d087b0668b5d
- Size
  
  71KB
- MD5
  
  c817d35791591e724ed9f59986d4b2da
- SHA1
  
  f968ac3a7ab27dea2d46751acb88a408ecabb2d2
- SHA256
  
  da4e60ec3f16059aa0e240c184ccea8da53afbc733d6212e3c67d087b0668b5d
- SHA512
  
  0cc6d6d191401c52ba7801efe3edc0f60ffe45f1e72f04c1dd21acee15e8c7ea1b3837a4574604e63ed49b27a43e3a6f3e2208aa05f0b35b6eefb56f3b0466e7
- SSDEEP
  
  768:1t4I1uRmzuiGNfWzmLdNGPH+4qMAOmYLVqUdQZv+WBQxPzLRf1skBVm6+Tm2p/1S:1FB/PH+4TLVqUdQh+ds22L3N7RZObZUS
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2