29ec87c6310c7b4f6d7936dbe2b0951754a3287a9d22c331b26798aac6448ae2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29ec87c6310c7b4f6d7936dbe2b0951754a3287a9d22c331b26798aac6448ae2
Size

98KB
Sample

240507-ylx3gsfd69
MD5

7e412c79293ea711c4abc4b1084a3b2a
SHA1

f9f98dcf90fa39d6d2e5387b6e59d129fbbcc70d
SHA256

29ec87c6310c7b4f6d7936dbe2b0951754a3287a9d22c331b26798aac6448ae2
SHA512

efb69b9b77705c17d219010b9870293dc252ff5edd7d38315fa0916882469f3e5213028b3e51cb23c213d316d4d3b341aebb13c57830a19e65199c02f54c7246
SSDEEP

1536:Mu2uh6hhmKZIngCjt75Q6KC/36Y6hSqX+SCGMG0raPdKPD3IQc+lHzpQtV1Ph:MuahhRInSMtDSCE0eFKPD375lHzpa1P

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  29ec87c6310c7b4f6d7936dbe2b0951754a3287a9d22c331b26798aac6448ae2
- Size
  
  98KB
- MD5
  
  7e412c79293ea711c4abc4b1084a3b2a
- SHA1
  
  f9f98dcf90fa39d6d2e5387b6e59d129fbbcc70d
- SHA256
  
  29ec87c6310c7b4f6d7936dbe2b0951754a3287a9d22c331b26798aac6448ae2
- SHA512
  
  efb69b9b77705c17d219010b9870293dc252ff5edd7d38315fa0916882469f3e5213028b3e51cb23c213d316d4d3b341aebb13c57830a19e65199c02f54c7246
- SSDEEP
  
  1536:Mu2uh6hhmKZIngCjt75Q6KC/36Y6hSqX+SCGMG0raPdKPD3IQc+lHzpQtV1Ph:MuahhRInSMtDSCE0eFKPD375lHzpa1P
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2