824c9c60b2ca747f9b44f90297ee819829594459194506f9afbd305fa016a9e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

824c9c60b2ca747f9b44f90297ee819829594459194506f9afbd305fa016a9e1
Size

768KB
Sample

240817-bp49msyfjg
MD5

7c4171c7ad707d16c305d79ebcba21cd
SHA1

b4e87249147e4e12fb2cd08b7fe71e902660942b
SHA256

824c9c60b2ca747f9b44f90297ee819829594459194506f9afbd305fa016a9e1
SHA512

2722b196b7566f09bbfcbb8087d65d6acaf213e38f309601d755591c63ec9fbb41d377971b0c9c23069ee98a13b192fe8e04e508e4a689d3cf9ba1959a050106
SSDEEP

12288:t96c56fvE6IvYvc6IveDVqvQ6IvTPh2kkkkK4kXkkkkkkkkl888888888888888I:t96+6k3q5hPPh2kkkkK4kXkkkkkkkkH

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  824c9c60b2ca747f9b44f90297ee819829594459194506f9afbd305fa016a9e1
- Size
  
  768KB
- MD5
  
  7c4171c7ad707d16c305d79ebcba21cd
- SHA1
  
  b4e87249147e4e12fb2cd08b7fe71e902660942b
- SHA256
  
  824c9c60b2ca747f9b44f90297ee819829594459194506f9afbd305fa016a9e1
- SHA512
  
  2722b196b7566f09bbfcbb8087d65d6acaf213e38f309601d755591c63ec9fbb41d377971b0c9c23069ee98a13b192fe8e04e508e4a689d3cf9ba1959a050106
- SSDEEP
  
  12288:t96c56fvE6IvYvc6IveDVqvQ6IvTPh2kkkkK4kXkkkkkkkkl888888888888888I:t96+6k3q5hPPh2kkkkK4kXkkkkkkkkH
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence