0791952cdca0444ce82793e2d527cffe7e31ce9554beb8859f904a0f00129a10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0791952cdca0444ce82793e2d527cffe7e31ce9554beb8859f904a0f00129a10
Size

379KB
Sample

240415-wzfn9ada92
MD5

056798ff22e7e6d650df88c7f410b6e2
SHA1

9edf9797f96d081067de661efaf5dcac357390fc
SHA256

0791952cdca0444ce82793e2d527cffe7e31ce9554beb8859f904a0f00129a10
SHA512

42f4b6015955985e33f1c927a564762d5721aca3cc73fd760b42560770ec6f2d727b31692a23b1e9467fc6fe7180864f9e7ec8aafadd8b54d179032d63af9790
SSDEEP

6144:28C1dPZOeRPXuapoaCPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDSpaH8m30gsb:28C1dP4kuqFHRFbeE8m5s

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0791952cdca0444ce82793e2d527cffe7e31ce9554beb8859f904a0f00129a10
- Size
  
  379KB
- MD5
  
  056798ff22e7e6d650df88c7f410b6e2
- SHA1
  
  9edf9797f96d081067de661efaf5dcac357390fc
- SHA256
  
  0791952cdca0444ce82793e2d527cffe7e31ce9554beb8859f904a0f00129a10
- SHA512
  
  42f4b6015955985e33f1c927a564762d5721aca3cc73fd760b42560770ec6f2d727b31692a23b1e9467fc6fe7180864f9e7ec8aafadd8b54d179032d63af9790
- SSDEEP
  
  6144:28C1dPZOeRPXuapoaCPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDSpaH8m30gsb:28C1dP4kuqFHRFbeE8m5s
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2