9ef9b9e082aad558f6628ce78e6797053a0d2b027d9ce9014312d317f804cce8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9ef9b9e082aad558f6628ce78e6797053a0d2b027d9ce9014312d317f804cce8
Size

250KB
Sample

240810-a3t56axemj
MD5

f759e1f5d5136b9ea9be6c1feb643da9
SHA1

ef952e29652d70cb4157e40ea4f197120222e1cd
SHA256

9ef9b9e082aad558f6628ce78e6797053a0d2b027d9ce9014312d317f804cce8
SHA512

65a8d0d1c3f66359f7fc38d3d4a26361bc53dfe0ea39ba17c07f9f4d3daaa0918ae04df14fe25f3e2247935311f2817dd92fc531ae272554756ba6df978bff30
SSDEEP

6144:v8IFfvCvfmZ7KRRRGBCvfmZ7KFpNlJTBCvfmZ7d:kIk

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  9ef9b9e082aad558f6628ce78e6797053a0d2b027d9ce9014312d317f804cce8
- Size
  
  250KB
- MD5
  
  f759e1f5d5136b9ea9be6c1feb643da9
- SHA1
  
  ef952e29652d70cb4157e40ea4f197120222e1cd
- SHA256
  
  9ef9b9e082aad558f6628ce78e6797053a0d2b027d9ce9014312d317f804cce8
- SHA512
  
  65a8d0d1c3f66359f7fc38d3d4a26361bc53dfe0ea39ba17c07f9f4d3daaa0918ae04df14fe25f3e2247935311f2817dd92fc531ae272554756ba6df978bff30
- SSDEEP
  
  6144:v8IFfvCvfmZ7KRRRGBCvfmZ7KFpNlJTBCvfmZ7d:kIk
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence