03a2489b79abc09bc8789a0ff5adc426ae0648330e587c9dc94334e0c2b2b6dd | Triage

Sharing

General

Target

03a2489b79abc09bc8789a0ff5adc426ae0648330e587c9dc94334e0c2b2b6dd
Size

181KB
Sample

240530-wvj6waha54
MD5

d169b7e9bf30df4cb0cdf14f9ce045e5
SHA1

c8405d6220e0b5f736c9b4c248d32aa51f6f562c
SHA256

03a2489b79abc09bc8789a0ff5adc426ae0648330e587c9dc94334e0c2b2b6dd
SHA512

d221825ee4f30f171ef3913972027cc07da4068a2e379cbabb27d1920842bbb7adc74ea52c05b94a291e118f25743aef27a21fa946932b2790689945ab171169
SSDEEP

3072:YMVf1+vlB6alOQ8nwG+f/m+DrFDHZtOgxBOXXwwfBoD6N3h8N5G2qVUDrFDHZtOg:YSPalN8nw9nmu5tTDUZNSN58VU5tT

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  03a2489b79abc09bc8789a0ff5adc426ae0648330e587c9dc94334e0c2b2b6dd
- Size
  
  181KB
- MD5
  
  d169b7e9bf30df4cb0cdf14f9ce045e5
- SHA1
  
  c8405d6220e0b5f736c9b4c248d32aa51f6f562c
- SHA256
  
  03a2489b79abc09bc8789a0ff5adc426ae0648330e587c9dc94334e0c2b2b6dd
- SHA512
  
  d221825ee4f30f171ef3913972027cc07da4068a2e379cbabb27d1920842bbb7adc74ea52c05b94a291e118f25743aef27a21fa946932b2790689945ab171169
- SSDEEP
  
  3072:YMVf1+vlB6alOQ8nwG+f/m+DrFDHZtOgxBOXXwwfBoD6N3h8N5G2qVUDrFDHZtOg:YSPalN8nw9nmu5tTDUZNSN58VU5tT
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2