079dffba6d51470b974a3b28b5c4535b21ba1e4c435ac8645f593069e3872016 | Triage

Sharing

General

Target

079dffba6d51470b974a3b28b5c4535b21ba1e4c435ac8645f593069e3872016
Size

1024KB
Sample

240517-wzgasace64
MD5

343915e983e22f5653b9fdf335fb81a4
SHA1

7ca1dd9a4c7e65e29ee4c181bd538c7948ce1bdc
SHA256

079dffba6d51470b974a3b28b5c4535b21ba1e4c435ac8645f593069e3872016
SHA512

326c044a97145f57fb6d4e6e7341e3caeec55ce4f729dcd7f06646b5b4e7310ebb9e0f6da0493624e9e8766c5894274c82d92888cff2e115c4ba2ee788bafc40
SSDEEP

12288:qa2O9U8kY660fIaDZkY660f8jTK/XhdAwlt01PBExKN4P6IfKTLR+6CwUkEoH:qa2mgsaDZgQjGkwlks/6HnEO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  079dffba6d51470b974a3b28b5c4535b21ba1e4c435ac8645f593069e3872016
- Size
  
  1024KB
- MD5
  
  343915e983e22f5653b9fdf335fb81a4
- SHA1
  
  7ca1dd9a4c7e65e29ee4c181bd538c7948ce1bdc
- SHA256
  
  079dffba6d51470b974a3b28b5c4535b21ba1e4c435ac8645f593069e3872016
- SHA512
  
  326c044a97145f57fb6d4e6e7341e3caeec55ce4f729dcd7f06646b5b4e7310ebb9e0f6da0493624e9e8766c5894274c82d92888cff2e115c4ba2ee788bafc40
- SSDEEP
  
  12288:qa2O9U8kY660fIaDZkY660f8jTK/XhdAwlt01PBExKN4P6IfKTLR+6CwUkEoH:qa2mgsaDZgQjGkwlks/6HnEO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2