0247f8ac96d99a0640ddbe51d0acf098fa7b1eb915fd9061567cf160fdbac1db | Triage

Sharing

General

Target

0247f8ac96d99a0640ddbe51d0acf098fa7b1eb915fd9061567cf160fdbac1db
Size

63KB
Sample

240527-wvml1adh68
MD5

e3e71a46cb125c60844ef1c5ca675b06
SHA1

0de30aebbb0bb9d688894c2c457b50567fb03e05
SHA256

0247f8ac96d99a0640ddbe51d0acf098fa7b1eb915fd9061567cf160fdbac1db
SHA512

1ebdbabff9bd4fd7608787bbdf73a1f0df50a4824b242082252ba625055c840e288a87aca10a2b9400893f11021528f9534702f66e4e7aebbbcabe758d74e498
SSDEEP

1536:HG0oJcWEl+9h9HmTSmFYfi3KZ6H1juIZo:m0DWE0DmzYNcH1juIZo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0247f8ac96d99a0640ddbe51d0acf098fa7b1eb915fd9061567cf160fdbac1db
- Size
  
  63KB
- MD5
  
  e3e71a46cb125c60844ef1c5ca675b06
- SHA1
  
  0de30aebbb0bb9d688894c2c457b50567fb03e05
- SHA256
  
  0247f8ac96d99a0640ddbe51d0acf098fa7b1eb915fd9061567cf160fdbac1db
- SHA512
  
  1ebdbabff9bd4fd7608787bbdf73a1f0df50a4824b242082252ba625055c840e288a87aca10a2b9400893f11021528f9534702f66e4e7aebbbcabe758d74e498
- SSDEEP
  
  1536:HG0oJcWEl+9h9HmTSmFYfi3KZ6H1juIZo:m0DWE0DmzYNcH1juIZo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2