894814c63f367316ed1fcde0b26f8a69162746486b9b263af9feac0f9d441d00 | Triage

Sharing

General

Target

894814c63f367316ed1fcde0b26f8a69162746486b9b263af9feac0f9d441d00
Size

80KB
Sample

240727-am5a7athpm
MD5

316ce7b0188774f17a4197c2680b350b
SHA1

3d3bdc52378eb23b71aa780e4dd5885eae6a6190
SHA256

894814c63f367316ed1fcde0b26f8a69162746486b9b263af9feac0f9d441d00
SHA512

84fc26419361ff6aa24e028ba93a13038318bde99abe34b5734afd9db0925181d83abb8df531d3f4ef7dad47ad600fba58e2c85641e7e66d285045c357a02629
SSDEEP

1536:ClM+T73Q4uBaE1pAF8GiVIaN+zL20gJi1i9:CN3Q43688GiVngzL20WKS

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  894814c63f367316ed1fcde0b26f8a69162746486b9b263af9feac0f9d441d00
- Size
  
  80KB
- MD5
  
  316ce7b0188774f17a4197c2680b350b
- SHA1
  
  3d3bdc52378eb23b71aa780e4dd5885eae6a6190
- SHA256
  
  894814c63f367316ed1fcde0b26f8a69162746486b9b263af9feac0f9d441d00
- SHA512
  
  84fc26419361ff6aa24e028ba93a13038318bde99abe34b5734afd9db0925181d83abb8df531d3f4ef7dad47ad600fba58e2c85641e7e66d285045c357a02629
- SSDEEP
  
  1536:ClM+T73Q4uBaE1pAF8GiVIaN+zL20gJi1i9:CN3Q43688GiVngzL20WKS
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence