a379ddf28f476f5797da0550233011762aefd201d5aff8992d50d9beb57afbb5 | Triage

Sharing

General

Target

a379ddf28f476f5797da0550233011762aefd201d5aff8992d50d9beb57afbb5
Size

60KB
Sample

240422-bqv3csdg7x
MD5

0a0593fb30770a29933866cde112b566
SHA1

00d3d2d28779021727e40bc0087e17d906c44789
SHA256

a379ddf28f476f5797da0550233011762aefd201d5aff8992d50d9beb57afbb5
SHA512

d229ad81de88a3f0b9bd2506158b1f135a7e91f36de8c1f3079d1d6aa1452e4e38fef8e2d00e83ff3beb4e32a6d6d931ca183dddea5365fac88c67955b1b31f7
SSDEEP

768:DoQa28IENv8CRVea9nU1e0Ffwz8mSYGLq484JJJ2VisboJro/1H5CMB+XdnhMl/J:DJahNv8CRxHzqNAE2VmJiMMB86l1r

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a379ddf28f476f5797da0550233011762aefd201d5aff8992d50d9beb57afbb5
- Size
  
  60KB
- MD5
  
  0a0593fb30770a29933866cde112b566
- SHA1
  
  00d3d2d28779021727e40bc0087e17d906c44789
- SHA256
  
  a379ddf28f476f5797da0550233011762aefd201d5aff8992d50d9beb57afbb5
- SHA512
  
  d229ad81de88a3f0b9bd2506158b1f135a7e91f36de8c1f3079d1d6aa1452e4e38fef8e2d00e83ff3beb4e32a6d6d931ca183dddea5365fac88c67955b1b31f7
- SSDEEP
  
  768:DoQa28IENv8CRVea9nU1e0Ffwz8mSYGLq484JJJ2VisboJro/1H5CMB+XdnhMl/J:DJahNv8CRxHzqNAE2VmJiMMB86l1r
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2