a93a89f1e9dfa24dd78601d0b411026b4d8f49d98a0a374ed621072a8b35e8ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a93a89f1e9dfa24dd78601d0b411026b4d8f49d98a0a374ed621072a8b35e8ce
Size

73KB
Sample

240609-hbwhxafg46
MD5

2b59f1c9233334c1580db9349b4d5f0c
SHA1

59e9ba58382da2952b50c50416fbf9b2a4e515e2
SHA256

a93a89f1e9dfa24dd78601d0b411026b4d8f49d98a0a374ed621072a8b35e8ce
SHA512

235bb4ac9ff603f42fb3db75a58d8dace7a0a239c1f2ece979be6c42cc89fba6a2a46de23e65b44538bf0d17ff91028cc385a14291bac80d0208284f2a0b9f8f
SSDEEP

1536:8MYBpExpoXAPHMFowdyeE/PSG7pWd725YMkhohBM:8jBKxJJf/PSwpWhCUAM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a93a89f1e9dfa24dd78601d0b411026b4d8f49d98a0a374ed621072a8b35e8ce
- Size
  
  73KB
- MD5
  
  2b59f1c9233334c1580db9349b4d5f0c
- SHA1
  
  59e9ba58382da2952b50c50416fbf9b2a4e515e2
- SHA256
  
  a93a89f1e9dfa24dd78601d0b411026b4d8f49d98a0a374ed621072a8b35e8ce
- SHA512
  
  235bb4ac9ff603f42fb3db75a58d8dace7a0a239c1f2ece979be6c42cc89fba6a2a46de23e65b44538bf0d17ff91028cc385a14291bac80d0208284f2a0b9f8f
- SSDEEP
  
  1536:8MYBpExpoXAPHMFowdyeE/PSG7pWd725YMkhohBM:8jBKxJJf/PSwpWhCUAM
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2