66fa6da015a8f947e2cd10f626656671797faa357fc85ee322d46011798d5cdc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66fa6da015a8f947e2cd10f626656671797faa357fc85ee322d46011798d5cdc
Size

1.2MB
Sample

240706-2newgaxepf
MD5

2f9f0a8397ab3ed80e48fd0c71f88263
SHA1

449cb5275654c359adc27ae232d3bbefe312e21e
SHA256

66fa6da015a8f947e2cd10f626656671797faa357fc85ee322d46011798d5cdc
SHA512

c7e288de9e95993e4f3e18eda9532db69bdd4e7146d0fb17aea29e7d6ec0dc2178f1302540f39b6a5f65507d8f15136a05e7f7606472a2089d67ebe96167c8d4
SSDEEP

6144:/B8TR7VhH4CAkOCOu0EajNVBZr6y2WX47R5ZHr9zM8d9CXdPipmMH/gysNkvC8vH:/YFHCXwpnsKvNA+XTvZHWuEo3oWbvrec

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  66fa6da015a8f947e2cd10f626656671797faa357fc85ee322d46011798d5cdc
- Size
  
  1.2MB
- MD5
  
  2f9f0a8397ab3ed80e48fd0c71f88263
- SHA1
  
  449cb5275654c359adc27ae232d3bbefe312e21e
- SHA256
  
  66fa6da015a8f947e2cd10f626656671797faa357fc85ee322d46011798d5cdc
- SHA512
  
  c7e288de9e95993e4f3e18eda9532db69bdd4e7146d0fb17aea29e7d6ec0dc2178f1302540f39b6a5f65507d8f15136a05e7f7606472a2089d67ebe96167c8d4
- SSDEEP
  
  6144:/B8TR7VhH4CAkOCOu0EajNVBZr6y2WX47R5ZHr9zM8d9CXdPipmMH/gysNkvC8vH:/YFHCXwpnsKvNA+XTvZHWuEo3oWbvrec
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2