2f9a1a1a31c0a98cdb0a3e0b5250abaa375873e001abe08e0dcb37c6a1ce51fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f9a1a1a31c0a98cdb0a3e0b5250abaa375873e001abe08e0dcb37c6a1ce51fc
Size

96KB
Sample

240615-yxncesxakr
MD5

f165680ae0eead805218e963ec991b42
SHA1

e0e5ffe330911e03266bfeae5ebe3453c491f4fb
SHA256

2f9a1a1a31c0a98cdb0a3e0b5250abaa375873e001abe08e0dcb37c6a1ce51fc
SHA512

f9543857aaab756e2c58bbf224b41bd4d58e16f67e7061a98f2fdb71dda3bedddb05159dc8a43083726e42051be689959ceb6234fa1b4375df2b369da645267e
SSDEEP

1536:TJi3RNoe/Kvw7tyXfu5gtlxo4UVcdZ2JVQBKoC/CKniTCvVAva61hLDnePhVsWz2:i/oeimtyXfw54UVqZ2fQkbn1vVAva63l

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2f9a1a1a31c0a98cdb0a3e0b5250abaa375873e001abe08e0dcb37c6a1ce51fc
- Size
  
  96KB
- MD5
  
  f165680ae0eead805218e963ec991b42
- SHA1
  
  e0e5ffe330911e03266bfeae5ebe3453c491f4fb
- SHA256
  
  2f9a1a1a31c0a98cdb0a3e0b5250abaa375873e001abe08e0dcb37c6a1ce51fc
- SHA512
  
  f9543857aaab756e2c58bbf224b41bd4d58e16f67e7061a98f2fdb71dda3bedddb05159dc8a43083726e42051be689959ceb6234fa1b4375df2b369da645267e
- SSDEEP
  
  1536:TJi3RNoe/Kvw7tyXfu5gtlxo4UVcdZ2JVQBKoC/CKniTCvVAva61hLDnePhVsWz2:i/oeimtyXfw54UVqZ2fQkbn1vVAva63l
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2