a4f80ef507c541b51f06f4315c6e3bbef395f2caf32adfbf7b33ee721e5ce6b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a4f80ef507c541b51f06f4315c6e3bbef395f2caf32adfbf7b33ee721e5ce6b8
Size

199KB
Sample

240425-bxlghach63
MD5

eb2a0770b034390e3a1854a1d685e12b
SHA1

0c998ec1a0b364264464f5d7966a3e8bcc97304e
SHA256

a4f80ef507c541b51f06f4315c6e3bbef395f2caf32adfbf7b33ee721e5ce6b8
SHA512

36267c5e69859eb7f17cbdc29d2077ea385ad69cc59389d994943c043b0cfc85e463ad7a0fb32d0330ed7fb5c719655326bb588e11d218e5157dc345d9553ead
SSDEEP

6144:NMqa7Do4sxSZSCZj81+jq4peBK034YOmFz1h:yL7047ZSCG1+jheBbOmFxh

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a4f80ef507c541b51f06f4315c6e3bbef395f2caf32adfbf7b33ee721e5ce6b8
- Size
  
  199KB
- MD5
  
  eb2a0770b034390e3a1854a1d685e12b
- SHA1
  
  0c998ec1a0b364264464f5d7966a3e8bcc97304e
- SHA256
  
  a4f80ef507c541b51f06f4315c6e3bbef395f2caf32adfbf7b33ee721e5ce6b8
- SHA512
  
  36267c5e69859eb7f17cbdc29d2077ea385ad69cc59389d994943c043b0cfc85e463ad7a0fb32d0330ed7fb5c719655326bb588e11d218e5157dc345d9553ead
- SSDEEP
  
  6144:NMqa7Do4sxSZSCZj81+jq4peBK034YOmFz1h:yL7047ZSCG1+jheBbOmFxh
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2