138e2c7f0a7391b08efbde0145396c133406596da93d14f7644153e697b8e66e | Triage

Sharing

General

Target

138e2c7f0a7391b08efbde0145396c133406596da93d14f7644153e697b8e66e
Size

896KB
Sample

240428-xggz2aef4w
MD5

c442ba8a41e6597a824b9dd0432c422a
SHA1

cf9be7a130d9ce600e9ee8bd12d12096c8e64421
SHA256

138e2c7f0a7391b08efbde0145396c133406596da93d14f7644153e697b8e66e
SHA512

eaaf2129e078c97f09bbe5b587587a2704a80bab833761be936df8160066541ddebac22c66adfdecf91b8aa9e887e0ab71c0a27bbfb5c60f9acd5a07cc915297
SSDEEP

12288:S3786xFMusMH0QiRLsR4P377a20R01F50+5:2786xILX3a20R0v50+5

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  138e2c7f0a7391b08efbde0145396c133406596da93d14f7644153e697b8e66e
- Size
  
  896KB
- MD5
  
  c442ba8a41e6597a824b9dd0432c422a
- SHA1
  
  cf9be7a130d9ce600e9ee8bd12d12096c8e64421
- SHA256
  
  138e2c7f0a7391b08efbde0145396c133406596da93d14f7644153e697b8e66e
- SHA512
  
  eaaf2129e078c97f09bbe5b587587a2704a80bab833761be936df8160066541ddebac22c66adfdecf91b8aa9e887e0ab71c0a27bbfb5c60f9acd5a07cc915297
- SSDEEP
  
  12288:S3786xFMusMH0QiRLsR4P377a20R01F50+5:2786xILX3a20R0v50+5
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2