12b8799ed2cdc47945e9c02249d27f1e489a09277194f7b1f0ba473f77408f81 | Triage

Sharing

General

Target

12b8799ed2cdc47945e9c02249d27f1e489a09277194f7b1f0ba473f77408f81.exe
Size

576KB
Sample

240616-1675as1ama
MD5

688655e446d03115004e8dc5b2f9c7da
SHA1

0fe5ee88acf44e530a58284dc73ddb804a37eb51
SHA256

12b8799ed2cdc47945e9c02249d27f1e489a09277194f7b1f0ba473f77408f81
SHA512

f6405dbc0182452a691bebb1a4c87bb82b35c9194f2e23ab6432337888751e869340ee0ad3f357d766b58ba525db0d794424644b5abc5c4a587f4693afc5eca1
SSDEEP

12288:FL9Fv/Ph2kkkkK4kXkkkkkkkkl888888888888888888nusMH0QiRLsA:HFXPh2kkkkK4kXkkkkkkkkhL/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  12b8799ed2cdc47945e9c02249d27f1e489a09277194f7b1f0ba473f77408f81.exe
- Size
  
  576KB
- MD5
  
  688655e446d03115004e8dc5b2f9c7da
- SHA1
  
  0fe5ee88acf44e530a58284dc73ddb804a37eb51
- SHA256
  
  12b8799ed2cdc47945e9c02249d27f1e489a09277194f7b1f0ba473f77408f81
- SHA512
  
  f6405dbc0182452a691bebb1a4c87bb82b35c9194f2e23ab6432337888751e869340ee0ad3f357d766b58ba525db0d794424644b5abc5c4a587f4693afc5eca1
- SSDEEP
  
  12288:FL9Fv/Ph2kkkkK4kXkkkkkkkkl888888888888888888nusMH0QiRLsA:HFXPh2kkkkK4kXkkkkkkkkhL/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2