d32d1098ef43d53d142494f1c43e49879be726456eab0acfd7bd09fa5b8aa2c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d32d1098ef43d53d142494f1c43e49879be726456eab0acfd7bd09fa5b8aa2c3
Size

2.2MB
Sample

240525-end8lsdh6s
MD5

6fcc94034fd678c650576ae6df0b5354
SHA1

fa9aa4770e348e1cbe9c0ffe52192745090ddaef
SHA256

d32d1098ef43d53d142494f1c43e49879be726456eab0acfd7bd09fa5b8aa2c3
SHA512

a5f4324d8f1802459799d0b8036791c7ae493fd8f86900651cfcbde3e3745274e564c45abddf12453fd1e964f32a9d47d1e2a9b7f1821de1544c68c6c31af610
SSDEEP

24576:egq5hM5Dgq5h3q5hL6X1q5h3q5hPPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNp9:eyI6BbazR0vKLXZb

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d32d1098ef43d53d142494f1c43e49879be726456eab0acfd7bd09fa5b8aa2c3
- Size
  
  2.2MB
- MD5
  
  6fcc94034fd678c650576ae6df0b5354
- SHA1
  
  fa9aa4770e348e1cbe9c0ffe52192745090ddaef
- SHA256
  
  d32d1098ef43d53d142494f1c43e49879be726456eab0acfd7bd09fa5b8aa2c3
- SHA512
  
  a5f4324d8f1802459799d0b8036791c7ae493fd8f86900651cfcbde3e3745274e564c45abddf12453fd1e964f32a9d47d1e2a9b7f1821de1544c68c6c31af610
- SSDEEP
  
  24576:egq5hM5Dgq5h3q5hL6X1q5h3q5hPPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNp9:eyI6BbazR0vKLXZb
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2