8530e10962bc060114fa363493339b57e39aab7dfeb1047621a91ef888e340b6 | Triage

Sharing

General

Target

virussign.com_79a03c1c1b0874eeb3089028f88e4460.vir
Size

120KB
Sample

240528-ysqlzsbd28
MD5

79a03c1c1b0874eeb3089028f88e4460
SHA1

d8741870d33ea6e50241e54d007c6b4c4e6d908f
SHA256

8530e10962bc060114fa363493339b57e39aab7dfeb1047621a91ef888e340b6
SHA512

4981b2f6a804bd73d1633951ffec1a88748e56e9b264987c62fa55a65cbe6aca2c6fa5774f2ca5c2db8c239d7957caa84efc763dcd3aa8fdc843bd829f08c823
SSDEEP

1536:XEV5613ya28XneqZ4WDfyJqjz0cZ44mjD9r823F4:X2A1iaLXeaD6JLi/mjRrz3C

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  virussign.com_79a03c1c1b0874eeb3089028f88e4460.vir
- Size
  
  120KB
- MD5
  
  79a03c1c1b0874eeb3089028f88e4460
- SHA1
  
  d8741870d33ea6e50241e54d007c6b4c4e6d908f
- SHA256
  
  8530e10962bc060114fa363493339b57e39aab7dfeb1047621a91ef888e340b6
- SHA512
  
  4981b2f6a804bd73d1633951ffec1a88748e56e9b264987c62fa55a65cbe6aca2c6fa5774f2ca5c2db8c239d7957caa84efc763dcd3aa8fdc843bd829f08c823
- SSDEEP
  
  1536:XEV5613ya28XneqZ4WDfyJqjz0cZ44mjD9r823F4:X2A1iaLXeaD6JLi/mjRrz3C
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2