67c793b8007c70455b6ac2f7d92827dbe1a1557f2383189740664c9b15145938 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

67c793b8007c70455b6ac2f7d92827dbe1a1557f2383189740664c9b15145938
Size

320KB
Sample

240416-24w5pafa88
MD5

4cba006e254661c94a2c2280f31e4733
SHA1

57e7a90c721ffb0e48b323a660b596939625d4eb
SHA256

67c793b8007c70455b6ac2f7d92827dbe1a1557f2383189740664c9b15145938
SHA512

eb0ec206b74ae0dff183fccfca43929b73fe566544ef41b1e284ed4bf18fb69ec700c826d61edc416137d9e8211c6e5eb7c50ea9f154ee8b45c1adacb9c764e8
SSDEEP

6144:vPjSNujDl14TaXtDyB8LoedCFJ369BJ369vpui6yYPaIGckvNP8:HjS0Dl14TAtyWUedCv2EpV6yYPaN0

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  67c793b8007c70455b6ac2f7d92827dbe1a1557f2383189740664c9b15145938
- Size
  
  320KB
- MD5
  
  4cba006e254661c94a2c2280f31e4733
- SHA1
  
  57e7a90c721ffb0e48b323a660b596939625d4eb
- SHA256
  
  67c793b8007c70455b6ac2f7d92827dbe1a1557f2383189740664c9b15145938
- SHA512
  
  eb0ec206b74ae0dff183fccfca43929b73fe566544ef41b1e284ed4bf18fb69ec700c826d61edc416137d9e8211c6e5eb7c50ea9f154ee8b45c1adacb9c764e8
- SSDEEP
  
  6144:vPjSNujDl14TaXtDyB8LoedCFJ369BJ369vpui6yYPaIGckvNP8:HjS0Dl14TAtyWUedCv2EpV6yYPaN0
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2