8d1404b468c292a21f1b5efba9ca85ec55cf0d7586555d3a40284209efe16253 | Triage

Sharing

General

Target

8d1404b468c292a21f1b5efba9ca85ec55cf0d7586555d3a40284209efe16253
Size

64KB
Sample

240425-al1avacb2v
MD5

d63ec39fe0529644b4bf6d14695c5b3a
SHA1

561fdc06b0c2eac325de92d30374a0bf1a409a6b
SHA256

8d1404b468c292a21f1b5efba9ca85ec55cf0d7586555d3a40284209efe16253
SHA512

c9a1b5ddf62dbbfdda8d888288bcaaf11abe2d6ea7bda5b31c06aead6c457a8809bb5ac08f96b0c993454e2fcd9c9f7ce8db8167f6e4a16901a9547fc18d0243
SSDEEP

1536:jZbDyLg0tAqTksy+c4DyurICvlBIly5VP:Rjqwsy+c4Dygvlalkt

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8d1404b468c292a21f1b5efba9ca85ec55cf0d7586555d3a40284209efe16253
- Size
  
  64KB
- MD5
  
  d63ec39fe0529644b4bf6d14695c5b3a
- SHA1
  
  561fdc06b0c2eac325de92d30374a0bf1a409a6b
- SHA256
  
  8d1404b468c292a21f1b5efba9ca85ec55cf0d7586555d3a40284209efe16253
- SHA512
  
  c9a1b5ddf62dbbfdda8d888288bcaaf11abe2d6ea7bda5b31c06aead6c457a8809bb5ac08f96b0c993454e2fcd9c9f7ce8db8167f6e4a16901a9547fc18d0243
- SSDEEP
  
  1536:jZbDyLg0tAqTksy+c4DyurICvlBIly5VP:Rjqwsy+c4Dygvlalkt
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2