a09f8858c48e260faa9ead52b6a0563806e1af4eca8ffc50e3976e1a0055b26e | Triage

Sharing

General

Target

a09f8858c48e260faa9ead52b6a0563806e1af4eca8ffc50e3976e1a0055b26e
Size

124KB
Sample

240727-bzerqs1erf
MD5

0a3a78ee59bbcc94d0d0f812ab097f52
SHA1

b4cebb0e24de12be6784d9733fe9da5697b5c952
SHA256

a09f8858c48e260faa9ead52b6a0563806e1af4eca8ffc50e3976e1a0055b26e
SHA512

6bf9990036c94e22f829ec57216103f9ee0d78ec456b2fcaf33c9a42d1feea3ef47784c6ed717e18015b1b9b9dddc650593b243fcdb23644331121f216750411
SSDEEP

3072:AbA8ZSqUBGTbM4oapmHysdBj6+JB8M6m9jqLsFmsr:p8wymlBj6MB8Mhjwszr

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a09f8858c48e260faa9ead52b6a0563806e1af4eca8ffc50e3976e1a0055b26e
- Size
  
  124KB
- MD5
  
  0a3a78ee59bbcc94d0d0f812ab097f52
- SHA1
  
  b4cebb0e24de12be6784d9733fe9da5697b5c952
- SHA256
  
  a09f8858c48e260faa9ead52b6a0563806e1af4eca8ffc50e3976e1a0055b26e
- SHA512
  
  6bf9990036c94e22f829ec57216103f9ee0d78ec456b2fcaf33c9a42d1feea3ef47784c6ed717e18015b1b9b9dddc650593b243fcdb23644331121f216750411
- SSDEEP
  
  3072:AbA8ZSqUBGTbM4oapmHysdBj6+JB8M6m9jqLsFmsr:p8wymlBj6MB8Mhjwszr
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence