f1106f9a71a08b5609cc68b4352fc2ea7aa5289b81e201e6e9b0909186f982e1 | Triage

Sharing

General

Target

f1106f9a71a08b5609cc68b4352fc2ea7aa5289b81e201e6e9b0909186f982e1
Size

128KB
Sample

240422-fkxq8afh43
MD5

ad9fcc31da337d1df4e63980a665bd97
SHA1

c50d75558b0ca0969ca15b7a175ee5d565484762
SHA256

f1106f9a71a08b5609cc68b4352fc2ea7aa5289b81e201e6e9b0909186f982e1
SHA512

18d99012ccd7338586322e4bb809c9e23c51b49418d3cbc83d9bd18eddc66c06aa438d44f2fff070967d337de886d660eacc67d5c803101aa3d3f105f6c2955c
SSDEEP

3072:+PDY0KQCkEqevtTf58lzdH13+EE+RaZ6r+GDZnr:+LYal8tf58lzd5IF6rfBr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f1106f9a71a08b5609cc68b4352fc2ea7aa5289b81e201e6e9b0909186f982e1
- Size
  
  128KB
- MD5
  
  ad9fcc31da337d1df4e63980a665bd97
- SHA1
  
  c50d75558b0ca0969ca15b7a175ee5d565484762
- SHA256
  
  f1106f9a71a08b5609cc68b4352fc2ea7aa5289b81e201e6e9b0909186f982e1
- SHA512
  
  18d99012ccd7338586322e4bb809c9e23c51b49418d3cbc83d9bd18eddc66c06aa438d44f2fff070967d337de886d660eacc67d5c803101aa3d3f105f6c2955c
- SSDEEP
  
  3072:+PDY0KQCkEqevtTf58lzdH13+EE+RaZ6r+GDZnr:+LYal8tf58lzd5IF6rfBr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2