12d855c20793800a1ae9a915f64bb742394fe44675fd3a998dff471438206322 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12d855c20793800a1ae9a915f64bb742394fe44675fd3a998dff471438206322
Size

108KB
Sample

240529-xlgj3aeh56
MD5

0b567f1cb023dfee0c8bc4cb70cea348
SHA1

f9345878d3d95a2a59ff72cd50f7d9f966b1f4e4
SHA256

12d855c20793800a1ae9a915f64bb742394fe44675fd3a998dff471438206322
SHA512

97a2a7765a5aac5053a58fd3ff3226c19fad0069eed9068c33b49a7c1628fcf923d1ffdc29f8980753e9196f547595312d7764ee22df687eabd84834277413da
SSDEEP

3072:d4zgLconUYBONkgYTGdqLIFcFmKcUsvKwF:duIxUV3YjLsUs

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  12d855c20793800a1ae9a915f64bb742394fe44675fd3a998dff471438206322
- Size
  
  108KB
- MD5
  
  0b567f1cb023dfee0c8bc4cb70cea348
- SHA1
  
  f9345878d3d95a2a59ff72cd50f7d9f966b1f4e4
- SHA256
  
  12d855c20793800a1ae9a915f64bb742394fe44675fd3a998dff471438206322
- SHA512
  
  97a2a7765a5aac5053a58fd3ff3226c19fad0069eed9068c33b49a7c1628fcf923d1ffdc29f8980753e9196f547595312d7764ee22df687eabd84834277413da
- SSDEEP
  
  3072:d4zgLconUYBONkgYTGdqLIFcFmKcUsvKwF:duIxUV3YjLsUs
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2