9bf121d99126312a9329e9c034e067f10d3996603c7ed19f18bc5e6929dc8176 | Triage

Sharing

General

Target

9bf121d99126312a9329e9c034e067f10d3996603c7ed19f18bc5e6929dc8176
Size

434KB
Sample

240429-alwmnacg43
MD5

cbfab2a648304e39ab3863c8914de70b
SHA1

3af98c4c542a43a05595ec0b9c247b5146d6c00a
SHA256

9bf121d99126312a9329e9c034e067f10d3996603c7ed19f18bc5e6929dc8176
SHA512

7b0115899b331dfb3df183be36fa64c6ce3d5ebe7b56cf425c1862c450197796cf9cd63d81ca90745ed5a1e28b1b91ea046a22c7ba41320ee4adfdbab8805517
SSDEEP

12288:FHVN41ZxDmOQjkMmVY2gsvmQjBImVYymVY2gsv:L2p9Y2gsHYNY2gs

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9bf121d99126312a9329e9c034e067f10d3996603c7ed19f18bc5e6929dc8176
- Size
  
  434KB
- MD5
  
  cbfab2a648304e39ab3863c8914de70b
- SHA1
  
  3af98c4c542a43a05595ec0b9c247b5146d6c00a
- SHA256
  
  9bf121d99126312a9329e9c034e067f10d3996603c7ed19f18bc5e6929dc8176
- SHA512
  
  7b0115899b331dfb3df183be36fa64c6ce3d5ebe7b56cf425c1862c450197796cf9cd63d81ca90745ed5a1e28b1b91ea046a22c7ba41320ee4adfdbab8805517
- SSDEEP
  
  12288:FHVN41ZxDmOQjkMmVY2gsvmQjBImVYymVY2gsv:L2p9Y2gsHYNY2gs
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2