818f72863e4f749cb1e4abadf110d0ec67da7b785dd10af6b0f1f486857f05c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

818f72863e4f749cb1e4abadf110d0ec67da7b785dd10af6b0f1f486857f05c2
Size

128KB
Sample

240503-3snvlsbf39
MD5

a0d21e136916876bcc2773a5287ba0e3
SHA1

ed58fe0d85e9bfc05afb9834cb6ecdbd9eecf104
SHA256

818f72863e4f749cb1e4abadf110d0ec67da7b785dd10af6b0f1f486857f05c2
SHA512

afe4b6d5b7f7dd789dcffa399891f5aba55a6d2343ae12d1a7582f6e977a8fcada46bf7bf983aabd62d6b796f5c1e1872caf83e4c3c4681ad5829628d1938779
SSDEEP

3072:bEuWrG2wWZXQU1Qpeow0v0wnJcefSXQHPTTAkvB5DdcgFM9o:4uWrQ6C8WtnJfKXqPTX7D7FMm

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  818f72863e4f749cb1e4abadf110d0ec67da7b785dd10af6b0f1f486857f05c2
- Size
  
  128KB
- MD5
  
  a0d21e136916876bcc2773a5287ba0e3
- SHA1
  
  ed58fe0d85e9bfc05afb9834cb6ecdbd9eecf104
- SHA256
  
  818f72863e4f749cb1e4abadf110d0ec67da7b785dd10af6b0f1f486857f05c2
- SHA512
  
  afe4b6d5b7f7dd789dcffa399891f5aba55a6d2343ae12d1a7582f6e977a8fcada46bf7bf983aabd62d6b796f5c1e1872caf83e4c3c4681ad5829628d1938779
- SSDEEP
  
  3072:bEuWrG2wWZXQU1Qpeow0v0wnJcefSXQHPTTAkvB5DdcgFM9o:4uWrQ6C8WtnJfKXqPTX7D7FMm
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2