a22b0a4c752744992a143dfe1ed62084f459a078cd68cb13a760d66c0ea48ad8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a22b0a4c752744992a143dfe1ed62084f459a078cd68cb13a760d66c0ea48ad8
Size

128KB
Sample

240708-cknlrsxdrr
MD5

fa6235b9e451b731eac9452e211f2a70
SHA1

d5b0bb41db094a29a2fab3d01fb17d0d922a0c6f
SHA256

a22b0a4c752744992a143dfe1ed62084f459a078cd68cb13a760d66c0ea48ad8
SHA512

482a5e570ab3f2f7b2da15187a5c748096272b4197663410e83b580768d4f8dc3fec3a4ff18916bef09712ba8e05aa6dbff34d8ce6190766a33ce1cee66d5d54
SSDEEP

3072:39YSNpVpfyG5aBG9rLy7GR2/BhHmiImXJ2fYdV46nfPyxWhj8NCM/r:3SSvyG5aBG9rLy7K4BhHmNEcYj9nhV87

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a22b0a4c752744992a143dfe1ed62084f459a078cd68cb13a760d66c0ea48ad8
- Size
  
  128KB
- MD5
  
  fa6235b9e451b731eac9452e211f2a70
- SHA1
  
  d5b0bb41db094a29a2fab3d01fb17d0d922a0c6f
- SHA256
  
  a22b0a4c752744992a143dfe1ed62084f459a078cd68cb13a760d66c0ea48ad8
- SHA512
  
  482a5e570ab3f2f7b2da15187a5c748096272b4197663410e83b580768d4f8dc3fec3a4ff18916bef09712ba8e05aa6dbff34d8ce6190766a33ce1cee66d5d54
- SSDEEP
  
  3072:39YSNpVpfyG5aBG9rLy7GR2/BhHmiImXJ2fYdV46nfPyxWhj8NCM/r:3SSvyG5aBG9rLy7K4BhHmNEcYj9nhV87
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2