989f06e8d9eefc48cd89647195bd3e283fe619cd90518e0c30f62baee87013c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

989f06e8d9eefc48cd89647195bd3e283fe619cd90518e0c30f62baee87013c8
Size

138KB
Sample

240508-aggmyaag63
MD5

a2a5d53bd4f9ded47ddc416c264fd87a
SHA1

36474d94176f6a27bb0a302b4b4895911c0a2f08
SHA256

989f06e8d9eefc48cd89647195bd3e283fe619cd90518e0c30f62baee87013c8
SHA512

ee6e84c24b3e683b662540e5caec4aa4108d7615283e61217a92dc49bcc1d0f352974a653ab28c28a9567f5784be50e5b8031fd4ab81f6c12c0df7041d8c734b
SSDEEP

3072:MP1NXTa4ZeXcdV/TmS2kXX3mW2wS7IrHrY8pjq6:MPDjqXcdVLmStXHmHwMOH/Vz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  989f06e8d9eefc48cd89647195bd3e283fe619cd90518e0c30f62baee87013c8
- Size
  
  138KB
- MD5
  
  a2a5d53bd4f9ded47ddc416c264fd87a
- SHA1
  
  36474d94176f6a27bb0a302b4b4895911c0a2f08
- SHA256
  
  989f06e8d9eefc48cd89647195bd3e283fe619cd90518e0c30f62baee87013c8
- SHA512
  
  ee6e84c24b3e683b662540e5caec4aa4108d7615283e61217a92dc49bcc1d0f352974a653ab28c28a9567f5784be50e5b8031fd4ab81f6c12c0df7041d8c734b
- SSDEEP
  
  3072:MP1NXTa4ZeXcdV/TmS2kXX3mW2wS7IrHrY8pjq6:MPDjqXcdVLmStXHmHwMOH/Vz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2