af9bd3f707ad9f62bc0d53521281b7963f85a2f21e02a1cc317c58dfeed916e3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af9bd3f707ad9f62bc0d53521281b7963f85a2f21e02a1cc317c58dfeed916e3
Size

96KB
Sample

240501-ckqfcsff83
MD5

9846f371c63a0f570756d56b49b347a6
SHA1

d9fd222930052c5f66b72342655d9d9f7becee1b
SHA256

af9bd3f707ad9f62bc0d53521281b7963f85a2f21e02a1cc317c58dfeed916e3
SHA512

74577facc433126c97a9b1ebf7caaf9db8c35b8891dd07761f875b2c1abdf1697421433ef87572e96b984612e9ed1bd6df1a830396ece8907cee88e1ab9b8788
SSDEEP

1536:aiNBRdwo0XsG3cReNfNxesCVyqZA+johpR99jqdzjYE/YL/7/D/7/7HHHfAGZi1y:zwoUxcReDx7Cd/jMhqd35grzrjpZiZXO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  af9bd3f707ad9f62bc0d53521281b7963f85a2f21e02a1cc317c58dfeed916e3
- Size
  
  96KB
- MD5
  
  9846f371c63a0f570756d56b49b347a6
- SHA1
  
  d9fd222930052c5f66b72342655d9d9f7becee1b
- SHA256
  
  af9bd3f707ad9f62bc0d53521281b7963f85a2f21e02a1cc317c58dfeed916e3
- SHA512
  
  74577facc433126c97a9b1ebf7caaf9db8c35b8891dd07761f875b2c1abdf1697421433ef87572e96b984612e9ed1bd6df1a830396ece8907cee88e1ab9b8788
- SSDEEP
  
  1536:aiNBRdwo0XsG3cReNfNxesCVyqZA+johpR99jqdzjYE/YL/7/D/7/7HHHfAGZi1y:zwoUxcReDx7Cd/jMhqd35grzrjpZiZXO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2