d2e0ecd159b05ba4b9494090226c25f113b3b013a58c44826b6b45a668d772ff | Triage

Sharing

General

Target

d2e0ecd159b05ba4b9494090226c25f113b3b013a58c44826b6b45a668d772ff
Size

81KB
Sample

240625-danpfsxala
MD5

4160fe02984b7dd5d2b2ed7c8fbf9b94
SHA1

45f3704914661366b0541714ad8218de68a7bdda
SHA256

d2e0ecd159b05ba4b9494090226c25f113b3b013a58c44826b6b45a668d772ff
SHA512

0ed052d476c761187faf2209c5d0561da70fbaef305080a80e19bd680297543b51638565b6a12fda7a42334de874fef9e26a48374813bad8613e1fe5dd300852
SSDEEP

1536:BZXRWLiMjfKKwLaPeyO434M3a735SpwhyFxWi3RGf6+7m4LO++/+1m6KadhYxU3M:UiZ5j73KWi3Ef6+/LrCimBaH8UH30L

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d2e0ecd159b05ba4b9494090226c25f113b3b013a58c44826b6b45a668d772ff
- Size
  
  81KB
- MD5
  
  4160fe02984b7dd5d2b2ed7c8fbf9b94
- SHA1
  
  45f3704914661366b0541714ad8218de68a7bdda
- SHA256
  
  d2e0ecd159b05ba4b9494090226c25f113b3b013a58c44826b6b45a668d772ff
- SHA512
  
  0ed052d476c761187faf2209c5d0561da70fbaef305080a80e19bd680297543b51638565b6a12fda7a42334de874fef9e26a48374813bad8613e1fe5dd300852
- SSDEEP
  
  1536:BZXRWLiMjfKKwLaPeyO434M3a735SpwhyFxWi3RGf6+7m4LO++/+1m6KadhYxU3M:UiZ5j73KWi3Ef6+/LrCimBaH8UH30L
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2