a525de0dec09117b4299e31a85f69a93b40fc1fbb8e53efc7ee467f130ef70d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a525de0dec09117b4299e31a85f69a93b40fc1fbb8e53efc7ee467f130ef70d4
Size

320KB
Sample

240616-bdke4asenh
MD5

6b02c871c672f213a208eb340f8da505
SHA1

d851ff9086bbdaee9be78d4827ef8526e6a26846
SHA256

a525de0dec09117b4299e31a85f69a93b40fc1fbb8e53efc7ee467f130ef70d4
SHA512

d52f98fd83490fc9c320a1771e958713a196443d030528cdb74dc93b0f6061eab0b0a4576977cf25080dadc08760728a187c09fa843b217ba3d4bd7311da3d83
SSDEEP

3072:hIYLGJ3J+U+y8/41QUUZm8/41QrAoUZ4pWLB51jozFWLBggS2LHqN:evJD0ZgZ0Wd/OWdPS2L8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a525de0dec09117b4299e31a85f69a93b40fc1fbb8e53efc7ee467f130ef70d4
- Size
  
  320KB
- MD5
  
  6b02c871c672f213a208eb340f8da505
- SHA1
  
  d851ff9086bbdaee9be78d4827ef8526e6a26846
- SHA256
  
  a525de0dec09117b4299e31a85f69a93b40fc1fbb8e53efc7ee467f130ef70d4
- SHA512
  
  d52f98fd83490fc9c320a1771e958713a196443d030528cdb74dc93b0f6061eab0b0a4576977cf25080dadc08760728a187c09fa843b217ba3d4bd7311da3d83
- SSDEEP
  
  3072:hIYLGJ3J+U+y8/41QUUZm8/41QrAoUZ4pWLB51jozFWLBggS2LHqN:evJD0ZgZ0Wd/OWdPS2L8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2