1a583cdaddb1f5ec814dcec0d4f55c15f674c25142612504beffe6bb9df98891 | Triage

Sharing

General

Target

1a583cdaddb1f5ec814dcec0d4f55c15f674c25142612504beffe6bb9df98891
Size

67KB
Sample

240629-xpff6stdmg
MD5

0de5c36a2c8104242bc16e0902476795
SHA1

26b3c26843904efbc4723142628aa751431789c3
SHA256

1a583cdaddb1f5ec814dcec0d4f55c15f674c25142612504beffe6bb9df98891
SHA512

e913af127254842b6eeeda058157b339a16840e2f506ab72de0f07731f84cdd0c932fb18dc5f9d7335cc79ed0ce9f5bc2b739b4dbb4421126ac69fa70599c500
SSDEEP

1536:CPssguWI93NMswhrejMiXC7+jY1cgCe8uC:ossvWI93NMVwjMiXTjYugCe8uC

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1a583cdaddb1f5ec814dcec0d4f55c15f674c25142612504beffe6bb9df98891
- Size
  
  67KB
- MD5
  
  0de5c36a2c8104242bc16e0902476795
- SHA1
  
  26b3c26843904efbc4723142628aa751431789c3
- SHA256
  
  1a583cdaddb1f5ec814dcec0d4f55c15f674c25142612504beffe6bb9df98891
- SHA512
  
  e913af127254842b6eeeda058157b339a16840e2f506ab72de0f07731f84cdd0c932fb18dc5f9d7335cc79ed0ce9f5bc2b739b4dbb4421126ac69fa70599c500
- SSDEEP
  
  1536:CPssguWI93NMswhrejMiXC7+jY1cgCe8uC:ossvWI93NMVwjMiXTjYugCe8uC
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2