01f29776f4e23c7226d27890810012d265a4a701c36861da8a40850534333560 | Triage

Sharing

General

Target

01f29776f4e23c7226d27890810012d265a4a701c36861da8a40850534333560
Size

96KB
Sample

240723-wr2azsvdnf
MD5

e4648a0c96534e5c55c299f6f1d47493
SHA1

4fbdaf2c757de8f4c6c9d85640cbabaecc825cc9
SHA256

01f29776f4e23c7226d27890810012d265a4a701c36861da8a40850534333560
SHA512

9ab8a7fba48b5a64e0f965d13d1099d3395c3496138d35bdaadbd2729304eb183c168204d444941c70425db2f30d7a226ea6e3fa20a809c865bfcffbd06e29fc
SSDEEP

1536:VsK19NbflE7izdkq5igJbfUjAFJpU7w+tVEe8uQEnBRQ+BR5R45WtqV9R2R462iW:Vse9LEyvEgJ7BFJpo11QEnBe+BHrtG9h

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  01f29776f4e23c7226d27890810012d265a4a701c36861da8a40850534333560
- Size
  
  96KB
- MD5
  
  e4648a0c96534e5c55c299f6f1d47493
- SHA1
  
  4fbdaf2c757de8f4c6c9d85640cbabaecc825cc9
- SHA256
  
  01f29776f4e23c7226d27890810012d265a4a701c36861da8a40850534333560
- SHA512
  
  9ab8a7fba48b5a64e0f965d13d1099d3395c3496138d35bdaadbd2729304eb183c168204d444941c70425db2f30d7a226ea6e3fa20a809c865bfcffbd06e29fc
- SSDEEP
  
  1536:VsK19NbflE7izdkq5igJbfUjAFJpU7w+tVEe8uQEnBRQ+BR5R45WtqV9R2R462iW:Vse9LEyvEgJ7BFJpo11QEnBe+BHrtG9h
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence