a250374d207f264786426687dff5f80d5fbebf2ca42bda3d44139f11ebc8f55a | Triage

Sharing

General

Target

a250374d207f264786426687dff5f80d5fbebf2ca42bda3d44139f11ebc8f55a
Size

91KB
Sample

240724-bdvwtsyepk
MD5

686ee4c0b1924879cc8849b80a4e17ad
SHA1

ad0a6388fdea13bdafbad383a028c5f5ccd43894
SHA256

a250374d207f264786426687dff5f80d5fbebf2ca42bda3d44139f11ebc8f55a
SHA512

3921f21f9b90a8c975e6c2241af227e8d21f04fcd7ea794ea39538f3e3ef3b38c511714332c253f199a97e98832150a24f84f4514d8408d2aeac055e13ec55e3
SSDEEP

1536:c+MZam+P15ZQl3Vc0HurPUa1IPjF4qbiWuNl1r03wL4dh7/9FJVXSYr/viVMi:c+qab10FK0HCPUa1IPR4qbiWuBY3Y47K

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a250374d207f264786426687dff5f80d5fbebf2ca42bda3d44139f11ebc8f55a
- Size
  
  91KB
- MD5
  
  686ee4c0b1924879cc8849b80a4e17ad
- SHA1
  
  ad0a6388fdea13bdafbad383a028c5f5ccd43894
- SHA256
  
  a250374d207f264786426687dff5f80d5fbebf2ca42bda3d44139f11ebc8f55a
- SHA512
  
  3921f21f9b90a8c975e6c2241af227e8d21f04fcd7ea794ea39538f3e3ef3b38c511714332c253f199a97e98832150a24f84f4514d8408d2aeac055e13ec55e3
- SSDEEP
  
  1536:c+MZam+P15ZQl3Vc0HurPUa1IPjF4qbiWuNl1r03wL4dh7/9FJVXSYr/viVMi:c+qab10FK0HCPUa1IPR4qbiWuBY3Y47K
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence