f715917ede4d5c5253da625ed3f062778ca34985dd9120b1d122d04de42b1e27 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f715917ede4d5c5253da625ed3f062778ca34985dd9120b1d122d04de42b1e27
Size

74KB
Sample

240817-jdhv9sxenk
MD5

d3aa5d8eabc967a9610c07c365fbfc9d
SHA1

a0976fdba4291af33e7c4ad934f52b7f663e75e7
SHA256

f715917ede4d5c5253da625ed3f062778ca34985dd9120b1d122d04de42b1e27
SHA512

08ff48035c3228c88f54bfdda9991a7d485a905b14fed7bb86fbcb28686a01dd0b81bb219ebdd5ebdc8868320dedbfd1b29f6b8926036658a7221af0c6252e02
SSDEEP

1536:b5trN2++3V7T129QdziKjiDrTdhPOqdls:1O7pT1/5jiBhOB

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f715917ede4d5c5253da625ed3f062778ca34985dd9120b1d122d04de42b1e27
- Size
  
  74KB
- MD5
  
  d3aa5d8eabc967a9610c07c365fbfc9d
- SHA1
  
  a0976fdba4291af33e7c4ad934f52b7f663e75e7
- SHA256
  
  f715917ede4d5c5253da625ed3f062778ca34985dd9120b1d122d04de42b1e27
- SHA512
  
  08ff48035c3228c88f54bfdda9991a7d485a905b14fed7bb86fbcb28686a01dd0b81bb219ebdd5ebdc8868320dedbfd1b29f6b8926036658a7221af0c6252e02
- SSDEEP
  
  1536:b5trN2++3V7T129QdziKjiDrTdhPOqdls:1O7pT1/5jiBhOB
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence