1f26268dcbb206dbcdcdc9ac66a7d56b0eea5df1a0f8f96f8fae8e84e81a4ee8 | Triage

Sharing

General

Target

1f26268dcbb206dbcdcdc9ac66a7d56b0eea5df1a0f8f96f8fae8e84e81a4ee8
Size

552KB
Sample

240429-x2g6jaaf84
MD5

3fe93967280d684bb38da1699eeb7704
SHA1

bf099d5e88ec0862776f3cdc9e26ee81bd562311
SHA256

1f26268dcbb206dbcdcdc9ac66a7d56b0eea5df1a0f8f96f8fae8e84e81a4ee8
SHA512

4943aabe8612997a53e783cba929605ed978cb9cb0192cdbc9ed343b165ae26aa254a6fca7a8f0f1b5ac9e8042045e044b2c17012f230656ce6b85a1b542c207
SSDEEP

6144:YkX0M/AWF8SeNpgdyuH1lZfRo0V8JcgE+ezpg1xrloBNTNxaaqX:YkZh87g7/VycgE81lgxaa8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1f26268dcbb206dbcdcdc9ac66a7d56b0eea5df1a0f8f96f8fae8e84e81a4ee8
- Size
  
  552KB
- MD5
  
  3fe93967280d684bb38da1699eeb7704
- SHA1
  
  bf099d5e88ec0862776f3cdc9e26ee81bd562311
- SHA256
  
  1f26268dcbb206dbcdcdc9ac66a7d56b0eea5df1a0f8f96f8fae8e84e81a4ee8
- SHA512
  
  4943aabe8612997a53e783cba929605ed978cb9cb0192cdbc9ed343b165ae26aa254a6fca7a8f0f1b5ac9e8042045e044b2c17012f230656ce6b85a1b542c207
- SSDEEP
  
  6144:YkX0M/AWF8SeNpgdyuH1lZfRo0V8JcgE+ezpg1xrloBNTNxaaqX:YkZh87g7/VycgE81lgxaa8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2