647f7a0753eca7a3ab6e9b3de55d1e039c18668bcd3ad3b58f1144f43ab0d934 | Triage

Sharing

General

Target

647f7a0753eca7a3ab6e9b3de55d1e039c18668bcd3ad3b58f1144f43ab0d934
Size

80KB
Sample

240419-19bkhahh4t
MD5

0f8dbcc3fe975c4c7a0b2a9ed3eb2e78
SHA1

4a41c31a8bb4c58d3bc974aa8daf794b8e4c041f
SHA256

647f7a0753eca7a3ab6e9b3de55d1e039c18668bcd3ad3b58f1144f43ab0d934
SHA512

bcc0320b84bedee9091ecd90dce2e1bb15bbd01fc8fdfc13c2f2a87d0a2c4727703fcef69e383b22adbe943e899a3f5094eff46b94f1903005948c70a524d906
SSDEEP

1536:6Rwh428GxzsCKUjz7icm2L4aIZTJ+7LhkiB0:6Rwa2vxzPz1L4aMU7ui

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  647f7a0753eca7a3ab6e9b3de55d1e039c18668bcd3ad3b58f1144f43ab0d934
- Size
  
  80KB
- MD5
  
  0f8dbcc3fe975c4c7a0b2a9ed3eb2e78
- SHA1
  
  4a41c31a8bb4c58d3bc974aa8daf794b8e4c041f
- SHA256
  
  647f7a0753eca7a3ab6e9b3de55d1e039c18668bcd3ad3b58f1144f43ab0d934
- SHA512
  
  bcc0320b84bedee9091ecd90dce2e1bb15bbd01fc8fdfc13c2f2a87d0a2c4727703fcef69e383b22adbe943e899a3f5094eff46b94f1903005948c70a524d906
- SSDEEP
  
  1536:6Rwh428GxzsCKUjz7icm2L4aIZTJ+7LhkiB0:6Rwa2vxzPz1L4aMU7ui
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2