508abbba0f1f088c3271b3b7d04275107bf9c99e5fe0dfecec765fb3e2d69852 | Triage

Sharing

General

Target

508abbba0f1f088c3271b3b7d04275107bf9c99e5fe0dfecec765fb3e2d69852
Size

80KB
Sample

240625-z2cl6atcle
MD5

14bc3db9f09e384ea38929eb6ce92c41
SHA1

5daba025826ea6614bbb6b1bfe4ff082114e169e
SHA256

508abbba0f1f088c3271b3b7d04275107bf9c99e5fe0dfecec765fb3e2d69852
SHA512

ea37812c08d53cbd157cfe0c6ae5a10ca5bef3f0d9b40456148bac44f2b063f0ea4093d7a808f4ea89a5b8effe77155e11c739e9086d3a3a881f60e3d612ca60
SSDEEP

1536:r6utn4YaISWgL4zyxVSVSptM2Ltbvwfi+TjRC/6i:WQA+yxVSUpj9wf1TjYL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  508abbba0f1f088c3271b3b7d04275107bf9c99e5fe0dfecec765fb3e2d69852
- Size
  
  80KB
- MD5
  
  14bc3db9f09e384ea38929eb6ce92c41
- SHA1
  
  5daba025826ea6614bbb6b1bfe4ff082114e169e
- SHA256
  
  508abbba0f1f088c3271b3b7d04275107bf9c99e5fe0dfecec765fb3e2d69852
- SHA512
  
  ea37812c08d53cbd157cfe0c6ae5a10ca5bef3f0d9b40456148bac44f2b063f0ea4093d7a808f4ea89a5b8effe77155e11c739e9086d3a3a881f60e3d612ca60
- SSDEEP
  
  1536:r6utn4YaISWgL4zyxVSVSptM2Ltbvwfi+TjRC/6i:WQA+yxVSUpj9wf1TjYL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2