11840660ea6a2d588cb353ed19da20ae48fecc9d284f13f436d03a24f868494a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11840660ea6a2d588cb353ed19da20ae48fecc9d284f13f436d03a24f868494a
Size

110KB
Sample

240810-xg45kaxamf
MD5

47204e20eea389015e42a4d58956f161
SHA1

33e358994bbe7e955cae1a21cde8d02727f02b9f
SHA256

11840660ea6a2d588cb353ed19da20ae48fecc9d284f13f436d03a24f868494a
SHA512

70f11381bd8fb23d26da6d6ff3e5628cef84c238b7d9678abd9c5d065f4696491a09ce951aa05a1f25e7c2619aab2b817fef36415a44490034853cd8898d3cfa
SSDEEP

3072:Qhtw0ud9vmzrxYm7AcE/+EWa6iYW5TLJiXSk6IXP:Qhtw02mK3WaJb8Sk6k

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  11840660ea6a2d588cb353ed19da20ae48fecc9d284f13f436d03a24f868494a
- Size
  
  110KB
- MD5
  
  47204e20eea389015e42a4d58956f161
- SHA1
  
  33e358994bbe7e955cae1a21cde8d02727f02b9f
- SHA256
  
  11840660ea6a2d588cb353ed19da20ae48fecc9d284f13f436d03a24f868494a
- SHA512
  
  70f11381bd8fb23d26da6d6ff3e5628cef84c238b7d9678abd9c5d065f4696491a09ce951aa05a1f25e7c2619aab2b817fef36415a44490034853cd8898d3cfa
- SSDEEP
  
  3072:Qhtw0ud9vmzrxYm7AcE/+EWa6iYW5TLJiXSk6IXP:Qhtw02mK3WaJb8Sk6k
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence