ab04b32aa6e8be8421ac859dec131c3dde35385caa025a3a1ad4cf58f701a61f | Triage

Sharing

General

Target

ab04b32aa6e8be8421ac859dec131c3dde35385caa025a3a1ad4cf58f701a61f
Size

112KB
Sample

240626-b2gn4szcmj
MD5

081d4f08cb12828609c1ae3f1abbd730
SHA1

3b343a56d5ab0472561ef1f1c857377e678b1333
SHA256

ab04b32aa6e8be8421ac859dec131c3dde35385caa025a3a1ad4cf58f701a61f
SHA512

385257408249ed863b2d538c566ce6a177ffeeb2127d742abb8b4e2765734a7af6b1a5cae6d569a7cb741286d96eec83affc11b882dc31ee4d769a7c060939eb
SSDEEP

3072:ga7d9Aw7hPMBDdoQgsHFeJLCQnFIBOaCUjKaVLjd:ga7xPMBDDbHFeJLbnCBbC+nVLjd

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ab04b32aa6e8be8421ac859dec131c3dde35385caa025a3a1ad4cf58f701a61f
- Size
  
  112KB
- MD5
  
  081d4f08cb12828609c1ae3f1abbd730
- SHA1
  
  3b343a56d5ab0472561ef1f1c857377e678b1333
- SHA256
  
  ab04b32aa6e8be8421ac859dec131c3dde35385caa025a3a1ad4cf58f701a61f
- SHA512
  
  385257408249ed863b2d538c566ce6a177ffeeb2127d742abb8b4e2765734a7af6b1a5cae6d569a7cb741286d96eec83affc11b882dc31ee4d769a7c060939eb
- SSDEEP
  
  3072:ga7d9Aw7hPMBDdoQgsHFeJLCQnFIBOaCUjKaVLjd:ga7xPMBDDbHFeJLbnCBbC+nVLjd
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2