a9eee3b13729b2222d369caace1d18c7e469a18418c5d1ff0e98510407c7d881 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a0366aefad2f71e0c422781dd882127e.exe
Size

85KB
Sample

240517-rx54xaca2z
MD5

a0366aefad2f71e0c422781dd882127e
SHA1

27f7b239edfa6b3ddf34568ab4c7ce2467b903ff
SHA256

a9eee3b13729b2222d369caace1d18c7e469a18418c5d1ff0e98510407c7d881
SHA512

4166efbd17b36e1df45b42143ee022e8369d57f17514e71a6718b09f98fc4dc19b25df469ab7fc8cff37e3f586032bf15636dfb8b7c330a47977e06603ee3be1
SSDEEP

1536:r5MFHKfAIJwj6djQw3N4tu2LHvMQ262AjCsQ2PCZZrqOlNfVSLUK+:rOYTKj6Qw3S9HvMQH2qC7ZQOlzSLUK+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a0366aefad2f71e0c422781dd882127e.exe
- Size
  
  85KB
- MD5
  
  a0366aefad2f71e0c422781dd882127e
- SHA1
  
  27f7b239edfa6b3ddf34568ab4c7ce2467b903ff
- SHA256
  
  a9eee3b13729b2222d369caace1d18c7e469a18418c5d1ff0e98510407c7d881
- SHA512
  
  4166efbd17b36e1df45b42143ee022e8369d57f17514e71a6718b09f98fc4dc19b25df469ab7fc8cff37e3f586032bf15636dfb8b7c330a47977e06603ee3be1
- SSDEEP
  
  1536:r5MFHKfAIJwj6djQw3N4tu2LHvMQ262AjCsQ2PCZZrqOlNfVSLUK+:rOYTKj6Qw3S9HvMQH2qC7ZQOlzSLUK+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2