a1371b8ea770724bd271082fc3db1408121ef31be6111a65d0690b457316eaa1 | Triage

Sharing

General

Target

a1371b8ea770724bd271082fc3db1408121ef31be6111a65d0690b457316eaa1
Size

55KB
Sample

240422-bmf42ade27
MD5

a6b40f54c6368c27fbfb75421e6abd7e
SHA1

db603c9069ffd9ee6f040b782c612b458e78766f
SHA256

a1371b8ea770724bd271082fc3db1408121ef31be6111a65d0690b457316eaa1
SHA512

c86db78b5a0360d2debe9269d1276f6d90309f147a7c6e0f2609b7b884cffd72e48ca15ccea98e16cd6e1420617e84bf125e8a87ec4b0f62f5668e0d1f7fa97f
SSDEEP

1536:uRd95RUEilQ8Plpzx53ZK+PKMWy538EDqkkBavlR:6iHlb534+PKMWy6EDqNYvlR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a1371b8ea770724bd271082fc3db1408121ef31be6111a65d0690b457316eaa1
- Size
  
  55KB
- MD5
  
  a6b40f54c6368c27fbfb75421e6abd7e
- SHA1
  
  db603c9069ffd9ee6f040b782c612b458e78766f
- SHA256
  
  a1371b8ea770724bd271082fc3db1408121ef31be6111a65d0690b457316eaa1
- SHA512
  
  c86db78b5a0360d2debe9269d1276f6d90309f147a7c6e0f2609b7b884cffd72e48ca15ccea98e16cd6e1420617e84bf125e8a87ec4b0f62f5668e0d1f7fa97f
- SSDEEP
  
  1536:uRd95RUEilQ8Plpzx53ZK+PKMWy538EDqkkBavlR:6iHlb534+PKMWy6EDqNYvlR
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2