ae87156fb512a9cfb4d177b4dc543844f18e97919f1d1e60d8fb43b6c368c7e0 | Triage

Sharing

General

Target

ae87156fb512a9cfb4d177b4dc543844f18e97919f1d1e60d8fb43b6c368c7e0
Size

2.7MB
Sample

240812-bf48aaxhmp
MD5

591fd0e3f4ca964792a3549de4247044
SHA1

bc736f62741c4e4f3d4b0a6e387c309719bf14c6
SHA256

ae87156fb512a9cfb4d177b4dc543844f18e97919f1d1e60d8fb43b6c368c7e0
SHA512

e903c7e5255bf47b3f00092c8dc7961e859be08c285e00d6cae359e5e0b1ba872de8879fb74f24021d90209df7a5efa401a3ac96986af8d4e1145c811587aa5e
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBc9w4S+:+R0pI/IQlUoMPdmpSpi4X

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ae87156fb512a9cfb4d177b4dc543844f18e97919f1d1e60d8fb43b6c368c7e0
- Size
  
  2.7MB
- MD5
  
  591fd0e3f4ca964792a3549de4247044
- SHA1
  
  bc736f62741c4e4f3d4b0a6e387c309719bf14c6
- SHA256
  
  ae87156fb512a9cfb4d177b4dc543844f18e97919f1d1e60d8fb43b6c368c7e0
- SHA512
  
  e903c7e5255bf47b3f00092c8dc7961e859be08c285e00d6cae359e5e0b1ba872de8879fb74f24021d90209df7a5efa401a3ac96986af8d4e1145c811587aa5e
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBc9w4S+:+R0pI/IQlUoMPdmpSpi4X
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence