d506c07ff6cde25fe91e94cec4cac6d5c857d19218df8804394baf2b9996c0bc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

windows-media-player-12-build-951929.exe
Size

24.6MB
Sample

240705-vw9bqavcma
MD5

b788015904d92454a48e020fc7f733d1
SHA1

533e3333a9abc13bbec701f856c174f1f95ddce9
SHA256

d506c07ff6cde25fe91e94cec4cac6d5c857d19218df8804394baf2b9996c0bc
SHA512

8f7b79821a4cf67632bf269c8b619d1e9403b7ba6dd06ec48faf03dc9a95a43788234ef92ec84ae09bb797d9c9eea0043029d1d5d13c79189891fa1daeab4488
SSDEEP

393216:WNANbNviVi099S0J+KpxRYzn0DqptG/j4SKftei+5g9D2OL8iYl9s45iicT4w0:WOt1KpnYz8ktG/j4Sdi0822Yl9n5iit/

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  windows-media-player-12-build-951929.exe
- Size
  
  24.6MB
- MD5
  
  b788015904d92454a48e020fc7f733d1
- SHA1
  
  533e3333a9abc13bbec701f856c174f1f95ddce9
- SHA256
  
  d506c07ff6cde25fe91e94cec4cac6d5c857d19218df8804394baf2b9996c0bc
- SHA512
  
  8f7b79821a4cf67632bf269c8b619d1e9403b7ba6dd06ec48faf03dc9a95a43788234ef92ec84ae09bb797d9c9eea0043029d1d5d13c79189891fa1daeab4488
- SSDEEP
  
  393216:WNANbNviVi099S0J+KpxRYzn0DqptG/j4SKftei+5g9D2OL8iYl9s45iicT4w0:WOt1KpnYz8ktG/j4Sdi0822Yl9n5iit/
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2