a0cce0b7d6c3c2a5ac19dfaa9186dd32056917bc3e74964b55dc8b23d808717f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a0cce0b7d6c3c2a5ac19dfaa9186dd32056917bc3e74964b55dc8b23d808717f
Size

104KB
Sample

240511-a1bk2abb8t
MD5

747c77aa7402ba512d710127a51e39b3
SHA1

d3d354183cd6bec4453d6f682f6c4edc9aa6a487
SHA256

a0cce0b7d6c3c2a5ac19dfaa9186dd32056917bc3e74964b55dc8b23d808717f
SHA512

c90d5a66df98f41310df3accb3448c916f766a2c7cb5f22f34e402febaf082978c816b84c576664db5e4a9e32e04b86dee694911a430c311bfd3210ccc20a67c
SSDEEP

3072:YshGoCrrrg08wqEe5sx7cEGrhkngpDvchkqbAIQS:jcoCr3glwU5sx4brq2Ahn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a0cce0b7d6c3c2a5ac19dfaa9186dd32056917bc3e74964b55dc8b23d808717f
- Size
  
  104KB
- MD5
  
  747c77aa7402ba512d710127a51e39b3
- SHA1
  
  d3d354183cd6bec4453d6f682f6c4edc9aa6a487
- SHA256
  
  a0cce0b7d6c3c2a5ac19dfaa9186dd32056917bc3e74964b55dc8b23d808717f
- SHA512
  
  c90d5a66df98f41310df3accb3448c916f766a2c7cb5f22f34e402febaf082978c816b84c576664db5e4a9e32e04b86dee694911a430c311bfd3210ccc20a67c
- SSDEEP
  
  3072:YshGoCrrrg08wqEe5sx7cEGrhkngpDvchkqbAIQS:jcoCr3glwU5sx4brq2Ahn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2