aa0b17ed48aa028ceae7d5381bf8f1e906dbdc95807f180193d004f0fa530a7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa0b17ed48aa028ceae7d5381bf8f1e906dbdc95807f180193d004f0fa530a7c
Size

89KB
Sample

240531-b2ke1aad2v
MD5

36bb1e91f75bf8669e93741ee4357361
SHA1

524f49473595728ab6f88f24bd6fb4c21c890992
SHA256

aa0b17ed48aa028ceae7d5381bf8f1e906dbdc95807f180193d004f0fa530a7c
SHA512

ab3cabc673f30f06dd258d9f08b90d6726dc141ca944407d83cc647db062782fc816aafd4e9b3de0ffa0425bddf5501905c5251635d30b0eb67d0e741b4d17f4
SSDEEP

1536:x1ZIcE90ky1tIc5WQnBEUXmsIeFacklExkg8Fk:hg0EBeFacklakgwk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  aa0b17ed48aa028ceae7d5381bf8f1e906dbdc95807f180193d004f0fa530a7c
- Size
  
  89KB
- MD5
  
  36bb1e91f75bf8669e93741ee4357361
- SHA1
  
  524f49473595728ab6f88f24bd6fb4c21c890992
- SHA256
  
  aa0b17ed48aa028ceae7d5381bf8f1e906dbdc95807f180193d004f0fa530a7c
- SHA512
  
  ab3cabc673f30f06dd258d9f08b90d6726dc141ca944407d83cc647db062782fc816aafd4e9b3de0ffa0425bddf5501905c5251635d30b0eb67d0e741b4d17f4
- SSDEEP
  
  1536:x1ZIcE90ky1tIc5WQnBEUXmsIeFacklExkg8Fk:hg0EBeFacklakgwk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2