556fa1220c81f62c1b14e718a649cef5e0bdcb901907028b1d6ab60b382f1642 | Triage

Sharing

General

Target

556fa1220c81f62c1b14e718a649cef5e0bdcb901907028b1d6ab60b382f1642
Size

406KB
Sample

240625-z9ergstgna
MD5

11e2aff8b4b12952c800d4cb84c3a6d8
SHA1

9836b50dda34f22eea7f2d42665708108b3a8536
SHA256

556fa1220c81f62c1b14e718a649cef5e0bdcb901907028b1d6ab60b382f1642
SHA512

f2727d979c511bf80b7ab2ed7284a1be4f213bebe5aabb7d53a9cefa21696047a79254f2a53cec755b0265b0327f8ec60d2cc8f4c9246f1ac0069030e04f7378
SSDEEP

6144:GUt2NFU5U5Xj1XH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:GUtMp3Ma3M3MvD3Mq3B3Mo3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  556fa1220c81f62c1b14e718a649cef5e0bdcb901907028b1d6ab60b382f1642
- Size
  
  406KB
- MD5
  
  11e2aff8b4b12952c800d4cb84c3a6d8
- SHA1
  
  9836b50dda34f22eea7f2d42665708108b3a8536
- SHA256
  
  556fa1220c81f62c1b14e718a649cef5e0bdcb901907028b1d6ab60b382f1642
- SHA512
  
  f2727d979c511bf80b7ab2ed7284a1be4f213bebe5aabb7d53a9cefa21696047a79254f2a53cec755b0265b0327f8ec60d2cc8f4c9246f1ac0069030e04f7378
- SSDEEP
  
  6144:GUt2NFU5U5Xj1XH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:GUtMp3Ma3M3MvD3Mq3B3Mo3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2