a37b5fd6e0d7512ae5bce64cb1bbb5afe1cf9e485a095092662c1c4dc205a594 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a37b5fd6e0d7512ae5bce64cb1bbb5afe1cf9e485a095092662c1c4dc205a594
Size

92KB
Sample

240612-ce5yvsycqj
MD5

56febb90443df2baff7cdf9babbe45c1
SHA1

7222a16575207723260377ce51bc8b99ce1e5e29
SHA256

a37b5fd6e0d7512ae5bce64cb1bbb5afe1cf9e485a095092662c1c4dc205a594
SHA512

62eda55b9b4f600277e85b447084abd93ac685b2ee91a1f813f274c9b21f51f55c58f0221e45c449e0cf49aad92344ff71082ef18bb9efafc2e3ee62ee58b866
SSDEEP

1536:owiXd8j9BhdlAFE5IUrXZ8l+5XEluz0GQOjjXq+66DFUABABOVLefE3:BiN8jWFE5IUrX9xjj6+JB8M3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a37b5fd6e0d7512ae5bce64cb1bbb5afe1cf9e485a095092662c1c4dc205a594
- Size
  
  92KB
- MD5
  
  56febb90443df2baff7cdf9babbe45c1
- SHA1
  
  7222a16575207723260377ce51bc8b99ce1e5e29
- SHA256
  
  a37b5fd6e0d7512ae5bce64cb1bbb5afe1cf9e485a095092662c1c4dc205a594
- SHA512
  
  62eda55b9b4f600277e85b447084abd93ac685b2ee91a1f813f274c9b21f51f55c58f0221e45c449e0cf49aad92344ff71082ef18bb9efafc2e3ee62ee58b866
- SSDEEP
  
  1536:owiXd8j9BhdlAFE5IUrXZ8l+5XEluz0GQOjjXq+66DFUABABOVLefE3:BiN8jWFE5IUrX9xjj6+JB8M3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2