f294cf428233a5a7461f861bc482003f1e9a6a1e087a9c24b00f01ae85ee5cee | Triage

Sharing

General

Target

f294cf428233a5a7461f861bc482003f1e9a6a1e087a9c24b00f01ae85ee5cee
Size

109KB
Sample

240512-gbsatabb3s
MD5

649230312b8a59f6614f636b538c45e3
SHA1

6df9660948c99e772929f8c352bf7b350ae46a71
SHA256

f294cf428233a5a7461f861bc482003f1e9a6a1e087a9c24b00f01ae85ee5cee
SHA512

1195e93374bfef96cde4281e9dc1ca2d853ce58c8e6ec41589faaba2eff8d02b8c91090ab09e154694156bafef3aa6bf7cd917bda63270661f6e5548ff864378
SSDEEP

3072:SkNvcE4A2evRl99ghmmdLbBDJ9gLCqwzBu1DjHLMVDqqkSpR:SkNIIvLyRDJ9Awtu1DjrFqhz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f294cf428233a5a7461f861bc482003f1e9a6a1e087a9c24b00f01ae85ee5cee
- Size
  
  109KB
- MD5
  
  649230312b8a59f6614f636b538c45e3
- SHA1
  
  6df9660948c99e772929f8c352bf7b350ae46a71
- SHA256
  
  f294cf428233a5a7461f861bc482003f1e9a6a1e087a9c24b00f01ae85ee5cee
- SHA512
  
  1195e93374bfef96cde4281e9dc1ca2d853ce58c8e6ec41589faaba2eff8d02b8c91090ab09e154694156bafef3aa6bf7cd917bda63270661f6e5548ff864378
- SSDEEP
  
  3072:SkNvcE4A2evRl99ghmmdLbBDJ9gLCqwzBu1DjHLMVDqqkSpR:SkNIIvLyRDJ9Awtu1DjrFqhz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2