a09c087144393e4c49687ef271c9c2aace19d9034f84cc08c73ceb39ae40510e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a09c087144393e4c49687ef271c9c2aace19d9034f84cc08c73ceb39ae40510e
Size

109KB
Sample

240810-a6cqaa1hjf
MD5

ecd7241ca554ff899b962c79eac5fb02
SHA1

0c3eb41c9f2c4ac90f4567c65517685ecd13bfc5
SHA256

a09c087144393e4c49687ef271c9c2aace19d9034f84cc08c73ceb39ae40510e
SHA512

78f8c9681b44e385ff960ee943e12d356243b9b55cb26f9683363d550f0e49dfb7da3e44bcf6271ea3fc0af591e4ccc6b1690cb1773b297d982d9dc100bc13d4
SSDEEP

3072:cPcJQZ2c8+KYsEXNjShiK28fo3PXl9Z7S/yCsKh2EzZA/z:cH2wXdShJ2go35e/yCthvUz

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a09c087144393e4c49687ef271c9c2aace19d9034f84cc08c73ceb39ae40510e
- Size
  
  109KB
- MD5
  
  ecd7241ca554ff899b962c79eac5fb02
- SHA1
  
  0c3eb41c9f2c4ac90f4567c65517685ecd13bfc5
- SHA256
  
  a09c087144393e4c49687ef271c9c2aace19d9034f84cc08c73ceb39ae40510e
- SHA512
  
  78f8c9681b44e385ff960ee943e12d356243b9b55cb26f9683363d550f0e49dfb7da3e44bcf6271ea3fc0af591e4ccc6b1690cb1773b297d982d9dc100bc13d4
- SSDEEP
  
  3072:cPcJQZ2c8+KYsEXNjShiK28fo3PXl9Z7S/yCsKh2EzZA/z:cH2wXdShJ2go35e/yCthvUz
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence