809dc93ffccec283e8c6f9c5320816f369cd0effd58b0165b2a1963ea8f3d79c | Triage

Sharing

General

Target

809dc93ffccec283e8c6f9c5320816f369cd0effd58b0165b2a1963ea8f3d79c
Size

194KB
Sample

240705-3jlc5a1gjc
MD5

a6901afbfac547c648f475c94244bf77
SHA1

56e15fbbb669258f0fe7f8fa7df041defce9c197
SHA256

809dc93ffccec283e8c6f9c5320816f369cd0effd58b0165b2a1963ea8f3d79c
SHA512

6e0918a2fb48ab722e7108e5913376db699854298f9e95b0bf43dfd11b8b043c2f88e7cf480c479ffe61d5070e4d0e849bbf3885a9424aa2c65b7237b1dbb072
SSDEEP

3072:jUljZ4Ti8Tj+dSfUNRbCeR0pN03xWlJ7mlOD6pN03:xpTj+dSfUNRbCeKpNYxWlJ7mkD6pNY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  809dc93ffccec283e8c6f9c5320816f369cd0effd58b0165b2a1963ea8f3d79c
- Size
  
  194KB
- MD5
  
  a6901afbfac547c648f475c94244bf77
- SHA1
  
  56e15fbbb669258f0fe7f8fa7df041defce9c197
- SHA256
  
  809dc93ffccec283e8c6f9c5320816f369cd0effd58b0165b2a1963ea8f3d79c
- SHA512
  
  6e0918a2fb48ab722e7108e5913376db699854298f9e95b0bf43dfd11b8b043c2f88e7cf480c479ffe61d5070e4d0e849bbf3885a9424aa2c65b7237b1dbb072
- SSDEEP
  
  3072:jUljZ4Ti8Tj+dSfUNRbCeR0pN03xWlJ7mlOD6pN03:xpTj+dSfUNRbCeKpNYxWlJ7mkD6pNY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2