d0ad32e596627d0f50d7f27382065f2f0b214abdcbcf5e182e6c593258b4cdcf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d0ad32e596627d0f50d7f27382065f2f0b214abdcbcf5e182e6c593258b4cdcf
Size

128KB
Sample

240624-dd85kavhrf
MD5

690fa23cb0bb85932ffc27e36639758d
SHA1

c22d0945d7eff8f0a7e23674641087549030e424
SHA256

d0ad32e596627d0f50d7f27382065f2f0b214abdcbcf5e182e6c593258b4cdcf
SHA512

ecff6af2129d7fe82db2df45f6a24e08f425d68d5225e4087d1b9d7cc32289ece9933ed54ed00048e74cf40819ec1e1bc656dd1bacfced7028e7cd34ac89183a
SSDEEP

3072:OHbs4YT0q6LCJC/emBw4f9nwBeR9pui6yYPaI7DehizrVtN:M7qqCM/I+nwU/pui6yYPaIGc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d0ad32e596627d0f50d7f27382065f2f0b214abdcbcf5e182e6c593258b4cdcf
- Size
  
  128KB
- MD5
  
  690fa23cb0bb85932ffc27e36639758d
- SHA1
  
  c22d0945d7eff8f0a7e23674641087549030e424
- SHA256
  
  d0ad32e596627d0f50d7f27382065f2f0b214abdcbcf5e182e6c593258b4cdcf
- SHA512
  
  ecff6af2129d7fe82db2df45f6a24e08f425d68d5225e4087d1b9d7cc32289ece9933ed54ed00048e74cf40819ec1e1bc656dd1bacfced7028e7cd34ac89183a
- SSDEEP
  
  3072:OHbs4YT0q6LCJC/emBw4f9nwBeR9pui6yYPaI7DehizrVtN:M7qqCM/I+nwU/pui6yYPaIGc
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2