28166a760bb7f0984565600f7b1854f8ee8e742472a19d77e6f22c713f8a3257 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28166a760bb7f0984565600f7b1854f8ee8e742472a19d77e6f22c713f8a3257
Size

77KB
Sample

240628-ygy4zszfmg
MD5

033d9f2dcca92cfdb1aec344bc9b0786
SHA1

314946865126a19e50aaefa1916ffc21dd293ec5
SHA256

28166a760bb7f0984565600f7b1854f8ee8e742472a19d77e6f22c713f8a3257
SHA512

590fca38072d0b19587fc66f318797a37bdb978b296667f5824053ae138d4353d7bfcc23a2be6c6920fe8e4094fa6e1e8e1aaec668588b6b14bd45a52d76915f
SSDEEP

1536:KeymJiZ1fH6md5vetv2Lt3Lwfi+TjRC/D:KXmIBXT5ZLwf1TjYD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  28166a760bb7f0984565600f7b1854f8ee8e742472a19d77e6f22c713f8a3257
- Size
  
  77KB
- MD5
  
  033d9f2dcca92cfdb1aec344bc9b0786
- SHA1
  
  314946865126a19e50aaefa1916ffc21dd293ec5
- SHA256
  
  28166a760bb7f0984565600f7b1854f8ee8e742472a19d77e6f22c713f8a3257
- SHA512
  
  590fca38072d0b19587fc66f318797a37bdb978b296667f5824053ae138d4353d7bfcc23a2be6c6920fe8e4094fa6e1e8e1aaec668588b6b14bd45a52d76915f
- SSDEEP
  
  1536:KeymJiZ1fH6md5vetv2Lt3Lwfi+TjRC/D:KXmIBXT5ZLwf1TjYD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2