171dbef642d52533ac0b1dc16af78d409057fa9af2f966b1569f49714cbadb58 | Triage

Sharing

General

Target

171dbef642d52533ac0b1dc16af78d409057fa9af2f966b1569f49714cbadb58
Size

548KB
Sample

240503-xq2e2add21
MD5

6c1ccff29b07eb16c9a37485e39c5c44
SHA1

205cb5d1eeb135e94cbd2f1822b2662dff3e5407
SHA256

171dbef642d52533ac0b1dc16af78d409057fa9af2f966b1569f49714cbadb58
SHA512

36c3edcb2829c19efe36f47d6504aac9e797f9160718314676fec645e983335ccff941eea1b710d61f081f0d2de0d7959f22a3bedecb0cefb6f56645a8e5b111
SSDEEP

12288:odvigqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGZ+C8lM1:lghtaSHFaZRBEYyqmaf2qwiHPKgRC4g2

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  171dbef642d52533ac0b1dc16af78d409057fa9af2f966b1569f49714cbadb58
- Size
  
  548KB
- MD5
  
  6c1ccff29b07eb16c9a37485e39c5c44
- SHA1
  
  205cb5d1eeb135e94cbd2f1822b2662dff3e5407
- SHA256
  
  171dbef642d52533ac0b1dc16af78d409057fa9af2f966b1569f49714cbadb58
- SHA512
  
  36c3edcb2829c19efe36f47d6504aac9e797f9160718314676fec645e983335ccff941eea1b710d61f081f0d2de0d7959f22a3bedecb0cefb6f56645a8e5b111
- SSDEEP
  
  12288:odvigqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGZ+C8lM1:lghtaSHFaZRBEYyqmaf2qwiHPKgRC4g2
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2