a17770dbe5f3f0a568d874324a9fcc1755c16154305b1213938586670ca45ef1 | Triage

Sharing

General

Target

a17770dbe5f3f0a568d874324a9fcc1755c16154305b1213938586670ca45ef1.exe
Size

324KB
Sample

240524-ehzblacc63
MD5

16108771dd890e190d276da0ebb80610
SHA1

db6798d245ce0c7cdee7363f50af0cea788db259
SHA256

a17770dbe5f3f0a568d874324a9fcc1755c16154305b1213938586670ca45ef1
SHA512

94be2545118fd2309af3ea8ce9beca76feed5cfd5d3c43bc4cbbad808d4d00a406aa231e697c2b41208a4af385941c77bd11d29a943c0d2386699a542d863192
SSDEEP

6144:d9EMCCODyOWzd5IF6rfBBcVPINRFYpfZvT6zAWq6JMf3us8ws:dZOCp5IFy5BcVPINRFYpfZvTmAWqeMfe

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a17770dbe5f3f0a568d874324a9fcc1755c16154305b1213938586670ca45ef1.exe
- Size
  
  324KB
- MD5
  
  16108771dd890e190d276da0ebb80610
- SHA1
  
  db6798d245ce0c7cdee7363f50af0cea788db259
- SHA256
  
  a17770dbe5f3f0a568d874324a9fcc1755c16154305b1213938586670ca45ef1
- SHA512
  
  94be2545118fd2309af3ea8ce9beca76feed5cfd5d3c43bc4cbbad808d4d00a406aa231e697c2b41208a4af385941c77bd11d29a943c0d2386699a542d863192
- SSDEEP
  
  6144:d9EMCCODyOWzd5IF6rfBBcVPINRFYpfZvT6zAWq6JMf3us8ws:dZOCp5IFy5BcVPINRFYpfZvTmAWqeMfe
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2