22fc1972d73fed2f8f243b53d662f94d98c37d167b9c2df792e0e6a6d7f5490e | Triage

Sharing

General

Target

22fc1972d73fed2f8f243b53d662f94d98c37d167b9c2df792e0e6a6d7f5490e
Size

313KB
Sample

240509-ybb29sbb4y
MD5

d0c8514514b1f4d00d69cdd347a1e885
SHA1

cf36d981c150c6875291502cbd5bd52cad19d087
SHA256

22fc1972d73fed2f8f243b53d662f94d98c37d167b9c2df792e0e6a6d7f5490e
SHA512

4483f424e19e05616ae97731e38619ac02622836a32971069e8f105af38b55ad43e2b933f8140e598ce4dbee9c1049ce8b5f8eca27d2e386276729da3d9d4cc4
SSDEEP

6144:/YaUaTlklgMUmKyIxLDXXoq9FJZCUmKyIxLX:/YaUN32XXf9Do3+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  22fc1972d73fed2f8f243b53d662f94d98c37d167b9c2df792e0e6a6d7f5490e
- Size
  
  313KB
- MD5
  
  d0c8514514b1f4d00d69cdd347a1e885
- SHA1
  
  cf36d981c150c6875291502cbd5bd52cad19d087
- SHA256
  
  22fc1972d73fed2f8f243b53d662f94d98c37d167b9c2df792e0e6a6d7f5490e
- SHA512
  
  4483f424e19e05616ae97731e38619ac02622836a32971069e8f105af38b55ad43e2b933f8140e598ce4dbee9c1049ce8b5f8eca27d2e386276729da3d9d4cc4
- SSDEEP
  
  6144:/YaUaTlklgMUmKyIxLDXXoq9FJZCUmKyIxLX:/YaUN32XXf9Do3+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2