4daa7636f9667662c9d9a0b57a16db4ec31385b839e43a90f4f0e05f4ab534c7 | Triage

Sharing

General

Target

4daa7636f9667662c9d9a0b57a16db4ec31385b839e43a90f4f0e05f4ab534c7
Size

97KB
Sample

240630-z6pghswbmf
MD5

cb36814f87d574b90a30b40054f6766c
SHA1

44df771e6304aced616a10cd03b99fc7de2cde55
SHA256

4daa7636f9667662c9d9a0b57a16db4ec31385b839e43a90f4f0e05f4ab534c7
SHA512

2d2eccb55bc2bb528632683297ec28ccb0da2ab46d65658ec266c86089760611c081c7c7750d96aff741798785647df416214c204dd574ca4c8fec31c335f504
SSDEEP

1536:KJ8Z0AmU57mOR+plYQkm0TL9k1GpufssazRYG/WToIvJXeYZ6:m8CAn7tVT5k1GpufshRYusVJXeK6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4daa7636f9667662c9d9a0b57a16db4ec31385b839e43a90f4f0e05f4ab534c7
- Size
  
  97KB
- MD5
  
  cb36814f87d574b90a30b40054f6766c
- SHA1
  
  44df771e6304aced616a10cd03b99fc7de2cde55
- SHA256
  
  4daa7636f9667662c9d9a0b57a16db4ec31385b839e43a90f4f0e05f4ab534c7
- SHA512
  
  2d2eccb55bc2bb528632683297ec28ccb0da2ab46d65658ec266c86089760611c081c7c7750d96aff741798785647df416214c204dd574ca4c8fec31c335f504
- SSDEEP
  
  1536:KJ8Z0AmU57mOR+plYQkm0TL9k1GpufssazRYG/WToIvJXeYZ6:m8CAn7tVT5k1GpufshRYusVJXeK6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2