91d6ec80905b5cafd1c30b5a37d89c13ab4970c27b698425ca44501bf8e5b68b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

91d6ec80905b5cafd1c30b5a37d89c13ab4970c27b698425ca44501bf8e5b68b
Size

64KB
Sample

240515-asn66agb3y
MD5

3abb9169b2be63c1afa5cd6820a8b24b
SHA1

a4ff58f4e850f5043ce14c742d79eb8175e5b509
SHA256

91d6ec80905b5cafd1c30b5a37d89c13ab4970c27b698425ca44501bf8e5b68b
SHA512

7f8c6301f2cc11dad5a03c69f5740f25961401271de89e0b53dbef1f1f343cf623aac99821dfde67241bd9b28c84a135a3ea296485a11adfe332d630f3b0ad36
SSDEEP

1536:Y889kDdURfBgNdpQpsKTV+1gnI6wIdq92L4CYrum8SPE:YRiGJC7heV+1gnI6n4VT8SE

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  91d6ec80905b5cafd1c30b5a37d89c13ab4970c27b698425ca44501bf8e5b68b
- Size
  
  64KB
- MD5
  
  3abb9169b2be63c1afa5cd6820a8b24b
- SHA1
  
  a4ff58f4e850f5043ce14c742d79eb8175e5b509
- SHA256
  
  91d6ec80905b5cafd1c30b5a37d89c13ab4970c27b698425ca44501bf8e5b68b
- SHA512
  
  7f8c6301f2cc11dad5a03c69f5740f25961401271de89e0b53dbef1f1f343cf623aac99821dfde67241bd9b28c84a135a3ea296485a11adfe332d630f3b0ad36
- SSDEEP
  
  1536:Y889kDdURfBgNdpQpsKTV+1gnI6wIdq92L4CYrum8SPE:YRiGJC7heV+1gnI6n4VT8SE
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2