7010baee5a4375cc942ce083a40552dd2e846bb0e2e427e588809120f85a5707 | Triage

Sharing

General

Target

7010baee5a4375cc942ce083a40552dd2e846bb0e2e427e588809120f85a5707
Size

1.3MB
Sample

240818-139hys1ajn
MD5

ba6fdd023ee7a029fd6696d17b141d34
SHA1

35cc04443af0a2d47ff691c236657b65048348f9
SHA256

7010baee5a4375cc942ce083a40552dd2e846bb0e2e427e588809120f85a5707
SHA512

cac64b90e866f02c4368a98c344fbfcabbc095a52b575d463fb3429730e6930f326998479573c401f08380f293c96ed8f0052cefc9eccfb12b31092050ca1222
SSDEEP

6144:rCGwMjbB/Lc1vE5ZC2npb+oB+Zz2HG8t0DoEWufVuvw0HBHY8rQ+6bPD3wPSk8ym:+YBDc9Abaz22cWfVaw0HBHY8r8ABjMn

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7010baee5a4375cc942ce083a40552dd2e846bb0e2e427e588809120f85a5707
- Size
  
  1.3MB
- MD5
  
  ba6fdd023ee7a029fd6696d17b141d34
- SHA1
  
  35cc04443af0a2d47ff691c236657b65048348f9
- SHA256
  
  7010baee5a4375cc942ce083a40552dd2e846bb0e2e427e588809120f85a5707
- SHA512
  
  cac64b90e866f02c4368a98c344fbfcabbc095a52b575d463fb3429730e6930f326998479573c401f08380f293c96ed8f0052cefc9eccfb12b31092050ca1222
- SSDEEP
  
  6144:rCGwMjbB/Lc1vE5ZC2npb+oB+Zz2HG8t0DoEWufVuvw0HBHY8rQ+6bPD3wPSk8ym:+YBDc9Abaz22cWfVaw0HBHY8r8ABjMn
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence