889623da2903a5fb4efcbf91f7e21f54df48f9d2dba5012faa2a4522f5a6397e | Triage

Sharing

General

Target

889623da2903a5fb4efcbf91f7e21f54df48f9d2dba5012faa2a4522f5a6397e
Size

844KB
Sample

240727-aln8kstgpp
MD5

a87ba09a77e088b607ed3ebf040ec356
SHA1

399d85b24d16ec252a9aa57e54da51777370962d
SHA256

889623da2903a5fb4efcbf91f7e21f54df48f9d2dba5012faa2a4522f5a6397e
SHA512

49000882edc5ee67d3c88dd04bd99637591f9978181bb125cd737ff69b5f480077092c934298e1e8b8e57db3cde3e6bfa2120232137af0afed1c5dafd46a6cd5
SSDEEP

24576:yxH5W3Tnbc53cp6p5vihMpQnqrdX72LbY6x46uR/qYglMS:oH5W3TbGBihw+cdX2x46uhqllMS

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  889623da2903a5fb4efcbf91f7e21f54df48f9d2dba5012faa2a4522f5a6397e
- Size
  
  844KB
- MD5
  
  a87ba09a77e088b607ed3ebf040ec356
- SHA1
  
  399d85b24d16ec252a9aa57e54da51777370962d
- SHA256
  
  889623da2903a5fb4efcbf91f7e21f54df48f9d2dba5012faa2a4522f5a6397e
- SHA512
  
  49000882edc5ee67d3c88dd04bd99637591f9978181bb125cd737ff69b5f480077092c934298e1e8b8e57db3cde3e6bfa2120232137af0afed1c5dafd46a6cd5
- SSDEEP
  
  24576:yxH5W3Tnbc53cp6p5vihMpQnqrdX72LbY6x46uR/qYglMS:oH5W3TbGBihw+cdX2x46uhqllMS
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence