8a05906c46641fe79e431f1b718061ba6d91c26515ff0c300bc942d974baa947 | Triage

Sharing

General

Target

8a05906c46641fe79e431f1b718061ba6d91c26515ff0c300bc942d974baa947
Size

304KB
Sample

240726-ajyn8sxbra
MD5

a324aaa386da7c2b92984a83e5c1cefb
SHA1

4f24ca34e3dc59d8d55f9c804f21c68512a7a050
SHA256

8a05906c46641fe79e431f1b718061ba6d91c26515ff0c300bc942d974baa947
SHA512

7189a5b9391a9fc4ba27345c9a1a9fe3c3ff2858e50f5290fb142ec0538636049f5dcfaad13a8a9e9332a55af56c96ed477aa8c6b6da5ad3a1cca4a7d5cfc592
SSDEEP

6144:iBvV5Ki569N46SXNxunXe8yhrtMsQBvli+RQFdq:EvV50wtvAO8qRMsrOQF

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8a05906c46641fe79e431f1b718061ba6d91c26515ff0c300bc942d974baa947
- Size
  
  304KB
- MD5
  
  a324aaa386da7c2b92984a83e5c1cefb
- SHA1
  
  4f24ca34e3dc59d8d55f9c804f21c68512a7a050
- SHA256
  
  8a05906c46641fe79e431f1b718061ba6d91c26515ff0c300bc942d974baa947
- SHA512
  
  7189a5b9391a9fc4ba27345c9a1a9fe3c3ff2858e50f5290fb142ec0538636049f5dcfaad13a8a9e9332a55af56c96ed477aa8c6b6da5ad3a1cca4a7d5cfc592
- SSDEEP
  
  6144:iBvV5Ki569N46SXNxunXe8yhrtMsQBvli+RQFdq:EvV50wtvAO8qRMsrOQF
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence