803b76c2f855387ae4fcc6474e6b26cb9ff3a0db6697583a6fa44bf3ba4f3fc9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

803b76c2f855387ae4fcc6474e6b26cb9ff3a0db6697583a6fa44bf3ba4f3fc9
Size

96KB
Sample

240501-ac48fada66
MD5

2c0838c23bbe11acf3ae972a1a7c4964
SHA1

f9f42e04d59b3f9940029b145630f858013a383f
SHA256

803b76c2f855387ae4fcc6474e6b26cb9ff3a0db6697583a6fa44bf3ba4f3fc9
SHA512

271fefe4e2d3069ef232730fb8adbb27c97b0fd92d2419c094765e5fb202b027715347978a0fecba41d252d87ac2bbd78faa51acfa81adc223afb1f7c08a563a
SSDEEP

1536:8hmV5j5x8EevQX1jhQC3ZYRrKgof7axRWn111111wMWdduV9jojTIvjrH:imVx5x8Eevw19QC3hpZn111111+dd69J

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  803b76c2f855387ae4fcc6474e6b26cb9ff3a0db6697583a6fa44bf3ba4f3fc9
- Size
  
  96KB
- MD5
  
  2c0838c23bbe11acf3ae972a1a7c4964
- SHA1
  
  f9f42e04d59b3f9940029b145630f858013a383f
- SHA256
  
  803b76c2f855387ae4fcc6474e6b26cb9ff3a0db6697583a6fa44bf3ba4f3fc9
- SHA512
  
  271fefe4e2d3069ef232730fb8adbb27c97b0fd92d2419c094765e5fb202b027715347978a0fecba41d252d87ac2bbd78faa51acfa81adc223afb1f7c08a563a
- SSDEEP
  
  1536:8hmV5j5x8EevQX1jhQC3ZYRrKgof7axRWn111111wMWdduV9jojTIvjrH:imVx5x8Eevw19QC3hpZn111111+dd69J
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2