250aec45257292eace3db7208a35b6f8982ade31097ab5badf2df02ba7f7b326 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

250aec45257292eace3db7208a35b6f8982ade31097ab5badf2df02ba7f7b326
Size

123KB
Sample

240509-ydx3hsbc6v
MD5

3c6fbe36babb623a4b4cce5421c11bdb
SHA1

2036ea4ce822cd78d6370ece1b3621e02a1d3981
SHA256

250aec45257292eace3db7208a35b6f8982ade31097ab5badf2df02ba7f7b326
SHA512

b36ae0d020c166e28fea0f2b7081e82e0037a702e9f56498ce68fa39af81bf67cad16aa270d78818e532c5ab28955ea6d4f0255575b93f9fe2f985376ed14603
SSDEEP

3072:wnNUwzsEVVLCxXhMSJGRYSa9rR85DEn5k7r:TwnrLICSJG4rQD85k/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  250aec45257292eace3db7208a35b6f8982ade31097ab5badf2df02ba7f7b326
- Size
  
  123KB
- MD5
  
  3c6fbe36babb623a4b4cce5421c11bdb
- SHA1
  
  2036ea4ce822cd78d6370ece1b3621e02a1d3981
- SHA256
  
  250aec45257292eace3db7208a35b6f8982ade31097ab5badf2df02ba7f7b326
- SHA512
  
  b36ae0d020c166e28fea0f2b7081e82e0037a702e9f56498ce68fa39af81bf67cad16aa270d78818e532c5ab28955ea6d4f0255575b93f9fe2f985376ed14603
- SSDEEP
  
  3072:wnNUwzsEVVLCxXhMSJGRYSa9rR85DEn5k7r:TwnrLICSJG4rQD85k/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2