9aa2873ec3568bcf7fb11ea84dfd886ff0cd9b1fda00424d959ec5156d7224c2 | Triage

Sharing

General

Target

9aa2873ec3568bcf7fb11ea84dfd886ff0cd9b1fda00424d959ec5156d7224c2
Size

98KB
Sample

240701-av5a6aterp
MD5

1faa09c2600352d15f3c6a9be895bae3
SHA1

9f1ce49154b1ebb02a40e67a4c6f7015a580e14d
SHA256

9aa2873ec3568bcf7fb11ea84dfd886ff0cd9b1fda00424d959ec5156d7224c2
SHA512

b73bd16864438d938669824905cc36c884f03091a5c95cfaae0319a949de7a6bfaf89c35b50f3296f4f0149de412a78c0221e993c0c8ed016d47879934bca4b3
SSDEEP

3072:gXwftBwi6ve2sik//TvnR1MBEaeFKPD375lHzpa1P:g/a2W7nROBEaeYr75lHzpaF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9aa2873ec3568bcf7fb11ea84dfd886ff0cd9b1fda00424d959ec5156d7224c2
- Size
  
  98KB
- MD5
  
  1faa09c2600352d15f3c6a9be895bae3
- SHA1
  
  9f1ce49154b1ebb02a40e67a4c6f7015a580e14d
- SHA256
  
  9aa2873ec3568bcf7fb11ea84dfd886ff0cd9b1fda00424d959ec5156d7224c2
- SHA512
  
  b73bd16864438d938669824905cc36c884f03091a5c95cfaae0319a949de7a6bfaf89c35b50f3296f4f0149de412a78c0221e993c0c8ed016d47879934bca4b3
- SSDEEP
  
  3072:gXwftBwi6ve2sik//TvnR1MBEaeFKPD375lHzpa1P:g/a2W7nROBEaeYr75lHzpaF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2