03181c9dead034968d2939063abcd029efbc7d0810af500ea3f8bc10589019a1 | Triage

Sharing

General

Target

03181c9dead034968d2939063abcd029efbc7d0810af500ea3f8bc10589019a1
Size

256KB
Sample

240420-wtgpcsed43
MD5

a2718b57027d7859513010208eca0c50
SHA1

1a5ec53e1a23f554aec0851e4b05010f33f8073f
SHA256

03181c9dead034968d2939063abcd029efbc7d0810af500ea3f8bc10589019a1
SHA512

33717746cb78f2eae0d997bf8924600572897e73564ee958a92ad0bcd084ccbec9b723c2c699a05ba0cdcb1e89030813ea33832725b937fcdcbdf7d3b30ca691
SSDEEP

6144:Q32/OZux/9C81NByvZ6Mxv5Rar3O6B9fZSLhZmzbBy9:Q3gR9C8HByvNv54B9f01ZmHBy9

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  03181c9dead034968d2939063abcd029efbc7d0810af500ea3f8bc10589019a1
- Size
  
  256KB
- MD5
  
  a2718b57027d7859513010208eca0c50
- SHA1
  
  1a5ec53e1a23f554aec0851e4b05010f33f8073f
- SHA256
  
  03181c9dead034968d2939063abcd029efbc7d0810af500ea3f8bc10589019a1
- SHA512
  
  33717746cb78f2eae0d997bf8924600572897e73564ee958a92ad0bcd084ccbec9b723c2c699a05ba0cdcb1e89030813ea33832725b937fcdcbdf7d3b30ca691
- SSDEEP
  
  6144:Q32/OZux/9C81NByvZ6Mxv5Rar3O6B9fZSLhZmzbBy9:Q3gR9C8HByvNv54B9f01ZmHBy9
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2