107e0756afcbe446d0b0bb0f31e72401d82edb10cb3ae53f867221a3d54ffde4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

107e0756afcbe446d0b0bb0f31e72401d82edb10cb3ae53f867221a3d54ffde4
Size

52KB
Sample

240808-xal1ea1dmf
MD5

8c713b136f58804f44fddf936720c5f7
SHA1

ee269d1eb096f5d98b62b991ca2488e7be64ab11
SHA256

107e0756afcbe446d0b0bb0f31e72401d82edb10cb3ae53f867221a3d54ffde4
SHA512

065dd4835136ecb55925ec0a1736a4075207f933032b0c6e182b91347cf0b1477cafffd1e881a389125d95cfaebbf54e276b2cb0cc82a5cd3b8627f663d9c139
SSDEEP

768:3pqsM4KsIgvvizv2mHu/NhsedAaWJ6qnhad925PlV6Q/1H5F/sCoMABvKWe:ZW4KsIgCzv2mHoNd+3haf27N1oMAdKZ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  107e0756afcbe446d0b0bb0f31e72401d82edb10cb3ae53f867221a3d54ffde4
- Size
  
  52KB
- MD5
  
  8c713b136f58804f44fddf936720c5f7
- SHA1
  
  ee269d1eb096f5d98b62b991ca2488e7be64ab11
- SHA256
  
  107e0756afcbe446d0b0bb0f31e72401d82edb10cb3ae53f867221a3d54ffde4
- SHA512
  
  065dd4835136ecb55925ec0a1736a4075207f933032b0c6e182b91347cf0b1477cafffd1e881a389125d95cfaebbf54e276b2cb0cc82a5cd3b8627f663d9c139
- SSDEEP
  
  768:3pqsM4KsIgvvizv2mHu/NhsedAaWJ6qnhad925PlV6Q/1H5F/sCoMABvKWe:ZW4KsIgCzv2mHoNd+3haf27N1oMAdKZ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence