317513d87f9c1f4e82b81c8d4aa88e4c838538b8019d5c1c710a0ac0b2eeed45 | Triage

Sharing

General

Target

317513d87f9c1f4e82b81c8d4aa88e4c838538b8019d5c1c710a0ac0b2eeed45
Size

192KB
Sample

240723-y4a1nswflp
MD5

b22fb8ab3bf89d1d06f10a6c087e03e8
SHA1

97ee0c56de9f52e0c04b9ade00a7d9b2ba433026
SHA256

317513d87f9c1f4e82b81c8d4aa88e4c838538b8019d5c1c710a0ac0b2eeed45
SHA512

295cbccd6e945402c632dd2bbc63dc3ff91a798bd8d969075c46bdf997fe4cec488c24275ea15cd595a66a351b02bb57e4713fa32cf272bb2a9986d4d9417ca2
SSDEEP

3072:SGoXA/5iOzJ07m0smTqDeRu2qOQpq3HNr5GnV54c4NthaeKU3d5vEiLqsC6vxfdN:DoXA/5ZIZsUdR3qO+uNk54t3haeTFLe2

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  317513d87f9c1f4e82b81c8d4aa88e4c838538b8019d5c1c710a0ac0b2eeed45
- Size
  
  192KB
- MD5
  
  b22fb8ab3bf89d1d06f10a6c087e03e8
- SHA1
  
  97ee0c56de9f52e0c04b9ade00a7d9b2ba433026
- SHA256
  
  317513d87f9c1f4e82b81c8d4aa88e4c838538b8019d5c1c710a0ac0b2eeed45
- SHA512
  
  295cbccd6e945402c632dd2bbc63dc3ff91a798bd8d969075c46bdf997fe4cec488c24275ea15cd595a66a351b02bb57e4713fa32cf272bb2a9986d4d9417ca2
- SSDEEP
  
  3072:SGoXA/5iOzJ07m0smTqDeRu2qOQpq3HNr5GnV54c4NthaeKU3d5vEiLqsC6vxfdN:DoXA/5ZIZsUdR3qO+uNk54t3haeTFLe2
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence