22d993425cc38fe0796fdf4fc50a83a9ca4614f71df86766383811a892513e37 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22d993425cc38fe0796fdf4fc50a83a9ca4614f71df86766383811a892513e37
Size

159KB
Sample

240514-yal6vacf7s
MD5

b885bb35fa99db1b9c1ce0c62902ebbe
SHA1

d0d2748c6fb31fc186090500afb3530e73cbf297
SHA256

22d993425cc38fe0796fdf4fc50a83a9ca4614f71df86766383811a892513e37
SHA512

b79a19e18d0648f60c4f6550f10903876d01fc6188146c443f16ad6c4356b3df75a0356f9cc02dd5ebb99e9449c90e46723b1dcb900def04de079679f72aab4a
SSDEEP

3072:Q6m2pybtjN4zNFXj9vPAUsvAPn9bwf1nFzwSAJB8FgBY5nd/M9dA:Q6ZUt6rFY1SnG1n6xJmPM9dA

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  22d993425cc38fe0796fdf4fc50a83a9ca4614f71df86766383811a892513e37
- Size
  
  159KB
- MD5
  
  b885bb35fa99db1b9c1ce0c62902ebbe
- SHA1
  
  d0d2748c6fb31fc186090500afb3530e73cbf297
- SHA256
  
  22d993425cc38fe0796fdf4fc50a83a9ca4614f71df86766383811a892513e37
- SHA512
  
  b79a19e18d0648f60c4f6550f10903876d01fc6188146c443f16ad6c4356b3df75a0356f9cc02dd5ebb99e9449c90e46723b1dcb900def04de079679f72aab4a
- SSDEEP
  
  3072:Q6m2pybtjN4zNFXj9vPAUsvAPn9bwf1nFzwSAJB8FgBY5nd/M9dA:Q6ZUt6rFY1SnG1n6xJmPM9dA
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2