2128f91ee4b15ace20576b17a9670a3ceead1d8c6844d2987e4fce0e2b9e1562 | Triage

Sharing

General

Target

2128f91ee4b15ace20576b17a9670a3ceead1d8c6844d2987e4fce0e2b9e1562
Size

362KB
Sample

240614-x9wznaxanj
MD5

e957faedc34b623ac4ed5a65d972370e
SHA1

e741f52ff22046a39afa875ce0e2a23076cd2899
SHA256

2128f91ee4b15ace20576b17a9670a3ceead1d8c6844d2987e4fce0e2b9e1562
SHA512

8fc9227932e7c831d86fc2ce7e30c6d1e1bcfa60d4f89a410f2ca86e876c97222b04ab099338a86e51d41bd893ee9fc1551fe057d98d61255935d12c154f4ac1
SSDEEP

6144:2tysk15EfzmaDBXf0Rg72xfJ9aCzrwbo1pw00+qnrLYC/VuwkdbA4+D6ByqrLYCO:2ty2LkROhtYNY6ThtY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2128f91ee4b15ace20576b17a9670a3ceead1d8c6844d2987e4fce0e2b9e1562
- Size
  
  362KB
- MD5
  
  e957faedc34b623ac4ed5a65d972370e
- SHA1
  
  e741f52ff22046a39afa875ce0e2a23076cd2899
- SHA256
  
  2128f91ee4b15ace20576b17a9670a3ceead1d8c6844d2987e4fce0e2b9e1562
- SHA512
  
  8fc9227932e7c831d86fc2ce7e30c6d1e1bcfa60d4f89a410f2ca86e876c97222b04ab099338a86e51d41bd893ee9fc1551fe057d98d61255935d12c154f4ac1
- SSDEEP
  
  6144:2tysk15EfzmaDBXf0Rg72xfJ9aCzrwbo1pw00+qnrLYC/VuwkdbA4+D6ByqrLYCO:2ty2LkROhtYNY6ThtY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2