97d220fabc1aa082269814eb3e61bf529e1a7ed02efd26444326eb145a2e5078 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

97d220fabc1aa082269814eb3e61bf529e1a7ed02efd26444326eb145a2e5078
Size

96KB
Sample

240803-ayvwwsxamk
MD5

b54d4d0c6ed48be9bd6a339e820e8325
SHA1

0568f62cfcda556a0f89c85d305384aa9e940f52
SHA256

97d220fabc1aa082269814eb3e61bf529e1a7ed02efd26444326eb145a2e5078
SHA512

a4b4d3caf5ea835b2c4adc2886c3bcfaa57c3c9c4e020eb510eaf56bca704851a0215d1cf8784f93a8257914e6ec2835452915deb878feeedd0f1c555b75153d
SSDEEP

384:Yyub81xJ4j8Gs/sRHSv9W705ZqSA7hyTM/0uOVlYpFUMmYPJ:YyubcCj8GsmIlAFyTqUVllXYP

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  97d220fabc1aa082269814eb3e61bf529e1a7ed02efd26444326eb145a2e5078
- Size
  
  96KB
- MD5
  
  b54d4d0c6ed48be9bd6a339e820e8325
- SHA1
  
  0568f62cfcda556a0f89c85d305384aa9e940f52
- SHA256
  
  97d220fabc1aa082269814eb3e61bf529e1a7ed02efd26444326eb145a2e5078
- SHA512
  
  a4b4d3caf5ea835b2c4adc2886c3bcfaa57c3c9c4e020eb510eaf56bca704851a0215d1cf8784f93a8257914e6ec2835452915deb878feeedd0f1c555b75153d
- SSDEEP
  
  384:Yyub81xJ4j8Gs/sRHSv9W705ZqSA7hyTM/0uOVlYpFUMmYPJ:YyubcCj8GsmIlAFyTqUVllXYP
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2