20ecf70141ff67458aadcf45d5b439d3aa24416293ef137d289d271a91c12134 | Triage

Sharing

General

Target

20ecf70141ff67458aadcf45d5b439d3aa24416293ef137d289d271a91c12134
Size

89KB
Sample

240519-x8m1cseb9t
MD5

1b2dde6d86c36461bb55ccabb5ea0f57
SHA1

462ede7593c08d3b1f9e3e9cd38025f9d0486e26
SHA256

20ecf70141ff67458aadcf45d5b439d3aa24416293ef137d289d271a91c12134
SHA512

bedf218c993ba44ecbb248dd76d3a9fce3cecf7b6ff823c40671e9d892ac837b63e5b3a4451758f614c8e201170319dcb716dde3f83a2c7be714e44463a75097
SSDEEP

1536:tVZPe+R28HcGBNOabAcJLdH/Pc+EDkja9MRQhD68a+VMKKTRVGFtUhQfR1WRaROu:tV5e+c88uNlbAsd/Pc+1Pegr4MKy3G7r

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  20ecf70141ff67458aadcf45d5b439d3aa24416293ef137d289d271a91c12134
- Size
  
  89KB
- MD5
  
  1b2dde6d86c36461bb55ccabb5ea0f57
- SHA1
  
  462ede7593c08d3b1f9e3e9cd38025f9d0486e26
- SHA256
  
  20ecf70141ff67458aadcf45d5b439d3aa24416293ef137d289d271a91c12134
- SHA512
  
  bedf218c993ba44ecbb248dd76d3a9fce3cecf7b6ff823c40671e9d892ac837b63e5b3a4451758f614c8e201170319dcb716dde3f83a2c7be714e44463a75097
- SSDEEP
  
  1536:tVZPe+R28HcGBNOabAcJLdH/Pc+EDkja9MRQhD68a+VMKKTRVGFtUhQfR1WRaROu:tV5e+c88uNlbAsd/Pc+1Pegr4MKy3G7r
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2