465a5f48e7f32d26991868ecc80f117057b4e6c50182d2ed859ddee1364aff9b | Triage

Sharing

General

Target

465a5f48e7f32d26991868ecc80f117057b4e6c50182d2ed859ddee1364aff9b
Size

896KB
Sample

240418-z7ct4sfb97
MD5

cdac72f72de9770889028785890cc53c
SHA1

3d6a79560131d1705c720caf954fc1b39a858f78
SHA256

465a5f48e7f32d26991868ecc80f117057b4e6c50182d2ed859ddee1364aff9b
SHA512

801933f451ca792594c7398e4f7cd37f4b69182ec372fc0bf1617bac66c91350fd7c078ef2f383632091c6ea9e62fe72fafd55e7c378755660b6f8f6f9c89c28
SSDEEP

6144:djOnby5CPXbo92ynnZMqKLDK2Q9zsyVH3imoQiRLsmAKWEnaW377a85n0R0tHII7:BOWFMusMH0QiRLsR4P377a20R01F50+5

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  465a5f48e7f32d26991868ecc80f117057b4e6c50182d2ed859ddee1364aff9b
- Size
  
  896KB
- MD5
  
  cdac72f72de9770889028785890cc53c
- SHA1
  
  3d6a79560131d1705c720caf954fc1b39a858f78
- SHA256
  
  465a5f48e7f32d26991868ecc80f117057b4e6c50182d2ed859ddee1364aff9b
- SHA512
  
  801933f451ca792594c7398e4f7cd37f4b69182ec372fc0bf1617bac66c91350fd7c078ef2f383632091c6ea9e62fe72fafd55e7c378755660b6f8f6f9c89c28
- SSDEEP
  
  6144:djOnby5CPXbo92ynnZMqKLDK2Q9zsyVH3imoQiRLsmAKWEnaW377a85n0R0tHII7:BOWFMusMH0QiRLsR4P377a20R01F50+5
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2