1aaa5cca819064508a447e37d43b76ed2a8ba92ead5c68840c4393ea455455a2 | Triage

Sharing

General

Target

1aaa5cca819064508a447e37d43b76ed2a8ba92ead5c68840c4393ea455455a2
Size

512KB
Sample

240809-xv3tnavbpq
MD5

57bc309aead95a184d32dbed6ac2d533
SHA1

6a18903db284207a127608b0e8b90440c5ddf0d8
SHA256

1aaa5cca819064508a447e37d43b76ed2a8ba92ead5c68840c4393ea455455a2
SHA512

5b971cda35f53dc6929437079ef7add0741ef7f52b0312d232f68a21f8413e7c46ef956fee19dd8970b66196be97c9e8794ff0969bae92f975314b4ca7c7023e
SSDEEP

6144:uF5G+0me853XBpnTfwNPbAvjDAcXxxXfY09cnEWPDZ:jNQBpnchWcZ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1aaa5cca819064508a447e37d43b76ed2a8ba92ead5c68840c4393ea455455a2
- Size
  
  512KB
- MD5
  
  57bc309aead95a184d32dbed6ac2d533
- SHA1
  
  6a18903db284207a127608b0e8b90440c5ddf0d8
- SHA256
  
  1aaa5cca819064508a447e37d43b76ed2a8ba92ead5c68840c4393ea455455a2
- SHA512
  
  5b971cda35f53dc6929437079ef7add0741ef7f52b0312d232f68a21f8413e7c46ef956fee19dd8970b66196be97c9e8794ff0969bae92f975314b4ca7c7023e
- SSDEEP
  
  6144:uF5G+0me853XBpnTfwNPbAvjDAcXxxXfY09cnEWPDZ:jNQBpnchWcZ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence