1d21d104745ed4a2af22b100ded34223f81695d125779db9b10c81fa30761570 | Triage

Sharing

General

Target

1d21d104745ed4a2af22b100ded34223f81695d125779db9b10c81fa30761570
Size

115KB
Sample

240705-x5dyaaterk
MD5

82ec2d7c3b6cbc6423283fecb610043d
SHA1

3b31f32dd43a0ae79c71b519e73840faa0ce7286
SHA256

1d21d104745ed4a2af22b100ded34223f81695d125779db9b10c81fa30761570
SHA512

6dd72c94eb9c0cf863fb4ff26feb2db0527c2077e26f6e6bc84259edffe1c58ac753a09f97e112c122d48dfe4cf65c42ed6b1f506ef986c634ed095f6738f14e
SSDEEP

3072:63fvFkZeTX8FW2VTbWymWU6SMQehalNgFuk0:kHF0CX8f6ymWU5MClN5

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1d21d104745ed4a2af22b100ded34223f81695d125779db9b10c81fa30761570
- Size
  
  115KB
- MD5
  
  82ec2d7c3b6cbc6423283fecb610043d
- SHA1
  
  3b31f32dd43a0ae79c71b519e73840faa0ce7286
- SHA256
  
  1d21d104745ed4a2af22b100ded34223f81695d125779db9b10c81fa30761570
- SHA512
  
  6dd72c94eb9c0cf863fb4ff26feb2db0527c2077e26f6e6bc84259edffe1c58ac753a09f97e112c122d48dfe4cf65c42ed6b1f506ef986c634ed095f6738f14e
- SSDEEP
  
  3072:63fvFkZeTX8FW2VTbWymWU6SMQehalNgFuk0:kHF0CX8f6ymWU5MClN5
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2