40872fd042be0b20392ccc375212626a93a99bc5f8e7d4c4c43dde2e1e1b3b71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40872fd042be0b20392ccc375212626a93a99bc5f8e7d4c4c43dde2e1e1b3b71
Size

56KB
Sample

240527-1apm3sbg23
MD5

48ba586221b2ec2e8cb4659c8a73f61d
SHA1

3a722d383a0a1e2cdc61365fe8d5539131bba0c1
SHA256

40872fd042be0b20392ccc375212626a93a99bc5f8e7d4c4c43dde2e1e1b3b71
SHA512

26df8d07bba1ac0cbe8c07d2c7e1f95d8a3a2e19346616a59a3956e1c3ab4527dede8d13780de8dd1cb3bb1af878b90d8f2c33d7c807e322af835f2192c27e1c
SSDEEP

768:+PKBXFdYrJvj8AOrZsdHck0cMXdkXhXRpXP5zFJWNP/1H5PXdnh:+PK1FdYrFBd85cgkRhpXP5zwVn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  40872fd042be0b20392ccc375212626a93a99bc5f8e7d4c4c43dde2e1e1b3b71
- Size
  
  56KB
- MD5
  
  48ba586221b2ec2e8cb4659c8a73f61d
- SHA1
  
  3a722d383a0a1e2cdc61365fe8d5539131bba0c1
- SHA256
  
  40872fd042be0b20392ccc375212626a93a99bc5f8e7d4c4c43dde2e1e1b3b71
- SHA512
  
  26df8d07bba1ac0cbe8c07d2c7e1f95d8a3a2e19346616a59a3956e1c3ab4527dede8d13780de8dd1cb3bb1af878b90d8f2c33d7c807e322af835f2192c27e1c
- SSDEEP
  
  768:+PKBXFdYrJvj8AOrZsdHck0cMXdkXhXRpXP5zFJWNP/1H5PXdnh:+PK1FdYrFBd85cgkRhpXP5zwVn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2