0781a7a2950cb34b91cf56a85b7ca295b0d2a2e0d327721c697b51f92e0f0486 | Triage

Sharing

General

Target

0781a7a2950cb34b91cf56a85b7ca295b0d2a2e0d327721c697b51f92e0f0486
Size

400KB
Sample

240509-w1ylfsgb8z
MD5

284080b52e6c1e631d6aab6a60ece1d9
SHA1

73fb6bec0136114ef75967a88ff6cc82e0db1131
SHA256

0781a7a2950cb34b91cf56a85b7ca295b0d2a2e0d327721c697b51f92e0f0486
SHA512

6bb66701a426e9a4687e4ea7c1ef53b075cb1f6b2280886345b80cf670a1556568995030d3e6930cc7dfa19798429f30c00f2dc50790e0b2e21b84dc81ab0911
SSDEEP

6144:DWqpmatvl/ZV4U/vlf0DrBqvl8ZV4U/vlfl+9DvlEZV4U/vlf0DrBqvl8ZV1:DhPtv/6IveDVqvQ6IvYvc6IveDVqvQ/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0781a7a2950cb34b91cf56a85b7ca295b0d2a2e0d327721c697b51f92e0f0486
- Size
  
  400KB
- MD5
  
  284080b52e6c1e631d6aab6a60ece1d9
- SHA1
  
  73fb6bec0136114ef75967a88ff6cc82e0db1131
- SHA256
  
  0781a7a2950cb34b91cf56a85b7ca295b0d2a2e0d327721c697b51f92e0f0486
- SHA512
  
  6bb66701a426e9a4687e4ea7c1ef53b075cb1f6b2280886345b80cf670a1556568995030d3e6930cc7dfa19798429f30c00f2dc50790e0b2e21b84dc81ab0911
- SSDEEP
  
  6144:DWqpmatvl/ZV4U/vlf0DrBqvl8ZV4U/vlfl+9DvlEZV4U/vlf0DrBqvl8ZV1:DhPtv/6IveDVqvQ6IvYvc6IveDVqvQ/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2