1530017fab398b1b53c842a8ac2c13933dd1831ae56c74b22b7918993c21ca70 | Triage

Sharing

General

Target

1530017fab398b1b53c842a8ac2c13933dd1831ae56c74b22b7918993c21ca70
Size

379KB
Sample

240613-yfl32ayemf
MD5

15edba948f496363095755ba99f2d2bf
SHA1

56e0cb8d076d74ab479a7678454037f05e667d37
SHA256

1530017fab398b1b53c842a8ac2c13933dd1831ae56c74b22b7918993c21ca70
SHA512

fe2b8288d33d86f2f20df76b5627f6fc5ea7bea1f289d1c94f0943e9a294f31e7dbec69f496ad654f2498c6324f1e6144164c3624b2e8452d51e95824eebb839
SSDEEP

6144:fsbYx7qe4uxERyO7ApO9S970cyPXuapoaCPXbo92ynnZlVrtv35CPXbo92ynn8s2:fGu7rEwAuqFHRFbeE8m5s

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1530017fab398b1b53c842a8ac2c13933dd1831ae56c74b22b7918993c21ca70
- Size
  
  379KB
- MD5
  
  15edba948f496363095755ba99f2d2bf
- SHA1
  
  56e0cb8d076d74ab479a7678454037f05e667d37
- SHA256
  
  1530017fab398b1b53c842a8ac2c13933dd1831ae56c74b22b7918993c21ca70
- SHA512
  
  fe2b8288d33d86f2f20df76b5627f6fc5ea7bea1f289d1c94f0943e9a294f31e7dbec69f496ad654f2498c6324f1e6144164c3624b2e8452d51e95824eebb839
- SSDEEP
  
  6144:fsbYx7qe4uxERyO7ApO9S970cyPXuapoaCPXbo92ynnZlVrtv35CPXbo92ynn8s2:fGu7rEwAuqFHRFbeE8m5s
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2