019239d0bfaef0e44268fb8e11a2c9f7f42c72c3a8da9c06b429f82e4e299e79 | Triage

Sharing

General

Target

019239d0bfaef0e44268fb8e11a2c9f7f42c72c3a8da9c06b429f82e4e299e79
Size

1024KB
Sample

240514-wqc7rshg89
MD5

109d1309a9ada0f78eba01fa5aa8aadb
SHA1

2366d0c7dc17acbeb90669cd5dc06206dd5a8ccd
SHA256

019239d0bfaef0e44268fb8e11a2c9f7f42c72c3a8da9c06b429f82e4e299e79
SHA512

cf0de47ecd6949e99f95210423288644ac2d3a5992ad815740d41588f6de18ad12b297348f4a97c8809b71d3edb61d90e0f620a09cce5e9e8be2d604fee6ae99
SSDEEP

24576:mstaSHFaZRBEYyqmaf2qwiHPKgRC4gvGZl6snARe:mSaSHFaZRBEYyqmS2DiHPKQgmN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  019239d0bfaef0e44268fb8e11a2c9f7f42c72c3a8da9c06b429f82e4e299e79
- Size
  
  1024KB
- MD5
  
  109d1309a9ada0f78eba01fa5aa8aadb
- SHA1
  
  2366d0c7dc17acbeb90669cd5dc06206dd5a8ccd
- SHA256
  
  019239d0bfaef0e44268fb8e11a2c9f7f42c72c3a8da9c06b429f82e4e299e79
- SHA512
  
  cf0de47ecd6949e99f95210423288644ac2d3a5992ad815740d41588f6de18ad12b297348f4a97c8809b71d3edb61d90e0f620a09cce5e9e8be2d604fee6ae99
- SSDEEP
  
  24576:mstaSHFaZRBEYyqmaf2qwiHPKgRC4gvGZl6snARe:mSaSHFaZRBEYyqmS2DiHPKQgmN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2