288ba6ce3148c02a8acc96890ee48ba5059bb91118c7c634b3f04e3446ee9dff | Triage

Sharing

General

Target

288ba6ce3148c02a8acc96890ee48ba5059bb91118c7c634b3f04e3446ee9dff
Size

320KB
Sample

240805-yh5m6azfpe
MD5

bf40c28435779fdd3a195c67c36cfee8
SHA1

d6d4e67ca180617ef50d82e9e7f57e9e03636c58
SHA256

288ba6ce3148c02a8acc96890ee48ba5059bb91118c7c634b3f04e3446ee9dff
SHA512

64e624da2446d6961963495e777569c9ca6f44749aee49d21322a2e7d4205cfdb689a79654160f7f678b5703b7cfdd9ff6e2b3107a211e1c4cd7f9f4250ae05c
SSDEEP

6144:gfVma258POwXYrMdlpfDFk/pB7gl0cziyqczZd7LFO3A9xoLBZ9oGnFnj+MpZfP7:SsxBwIKfDy/phgeczlqczZd7LFB3oFH5

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  288ba6ce3148c02a8acc96890ee48ba5059bb91118c7c634b3f04e3446ee9dff
- Size
  
  320KB
- MD5
  
  bf40c28435779fdd3a195c67c36cfee8
- SHA1
  
  d6d4e67ca180617ef50d82e9e7f57e9e03636c58
- SHA256
  
  288ba6ce3148c02a8acc96890ee48ba5059bb91118c7c634b3f04e3446ee9dff
- SHA512
  
  64e624da2446d6961963495e777569c9ca6f44749aee49d21322a2e7d4205cfdb689a79654160f7f678b5703b7cfdd9ff6e2b3107a211e1c4cd7f9f4250ae05c
- SSDEEP
  
  6144:gfVma258POwXYrMdlpfDFk/pB7gl0cziyqczZd7LFO3A9xoLBZ9oGnFnj+MpZfP7:SsxBwIKfDy/phgeczlqczZd7LFB3oFH5
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence