70f27aef5503ba4db5dfe4ec2ee039f6a221fec68e18501aff6de5858db44d94 | Triage

Sharing

General

Target

70f27aef5503ba4db5dfe4ec2ee039f6a221fec68e18501aff6de5858db44d94
Size

71KB
Sample

240809-2pnvrsshqj
MD5

afd8842617a20842d1456c7f1c9d87bc
SHA1

7a95a819b4904085ced286e2191b5b1d5cf78ddd
SHA256

70f27aef5503ba4db5dfe4ec2ee039f6a221fec68e18501aff6de5858db44d94
SHA512

ed41a3d89960a74382940ccb0a215b2ceb497b968b6b3f34f8cb44acae77da25dc04f0de20fccb1880d157f6b141ab1b29423aa2c08d0cccf15be7bc2ff65875
SSDEEP

1536:pK5ao+EMgqc5EUghDLs5xjAfqqY0Ak+PzZDpRQ15K1P+ATT:pK5UgqeInojAiri+VpeaP+A3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  70f27aef5503ba4db5dfe4ec2ee039f6a221fec68e18501aff6de5858db44d94
- Size
  
  71KB
- MD5
  
  afd8842617a20842d1456c7f1c9d87bc
- SHA1
  
  7a95a819b4904085ced286e2191b5b1d5cf78ddd
- SHA256
  
  70f27aef5503ba4db5dfe4ec2ee039f6a221fec68e18501aff6de5858db44d94
- SHA512
  
  ed41a3d89960a74382940ccb0a215b2ceb497b968b6b3f34f8cb44acae77da25dc04f0de20fccb1880d157f6b141ab1b29423aa2c08d0cccf15be7bc2ff65875
- SSDEEP
  
  1536:pK5ao+EMgqc5EUghDLs5xjAfqqY0Ak+PzZDpRQ15K1P+ATT:pK5UgqeInojAiri+VpeaP+A3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence