ab616f852ce7836705fd9443fd25dd2245f9a2bf9e77aafecc7afadefebdddb5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ab616f852ce7836705fd9443fd25dd2245f9a2bf9e77aafecc7afadefebdddb5
Size

182KB
Sample

240817-d7atvsvfpd
MD5

d73987de2e8c914181196f4b9ed7d6ae
SHA1

12e58636bde927563d0308b41838255d24982811
SHA256

ab616f852ce7836705fd9443fd25dd2245f9a2bf9e77aafecc7afadefebdddb5
SHA512

ead33f4504ad14003c10201dae77750ef8c4b0d3b25ab05b4ae9d9e8052d09ae954f6a3b24fd56fcc41c7f663c6c1dd1c2c54d2e3979fe0ab5ad1799c0e244ad
SSDEEP

1536:IpxJhn1m1Zn1gDbI2RXr2LUn7nguPw9uVgA53+RrKJs2zjFS3ldkBOLLaVqI240+:WxJhs1Znavn4S7nguPnVgA53+GpOc

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ab616f852ce7836705fd9443fd25dd2245f9a2bf9e77aafecc7afadefebdddb5
- Size
  
  182KB
- MD5
  
  d73987de2e8c914181196f4b9ed7d6ae
- SHA1
  
  12e58636bde927563d0308b41838255d24982811
- SHA256
  
  ab616f852ce7836705fd9443fd25dd2245f9a2bf9e77aafecc7afadefebdddb5
- SHA512
  
  ead33f4504ad14003c10201dae77750ef8c4b0d3b25ab05b4ae9d9e8052d09ae954f6a3b24fd56fcc41c7f663c6c1dd1c2c54d2e3979fe0ab5ad1799c0e244ad
- SSDEEP
  
  1536:IpxJhn1m1Zn1gDbI2RXr2LUn7nguPw9uVgA53+RrKJs2zjFS3ldkBOLLaVqI240+:WxJhs1Znavn4S7nguPnVgA53+GpOc
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence