7023f7fc0d2cc28514d005dbce76ae51079c874bd4f413ff955b404753512099 | Triage

Sharing

General

Target

7023f7fc0d2cc28514d005dbce76ae51079c874bd4f413ff955b404753512099
Size

80KB
Sample

240818-qgsm7sxflm
MD5

78b0649786521fb073383648850267d0
SHA1

f5fa863ecb1059976c6d4260c94f2ce03edb1d5e
SHA256

7023f7fc0d2cc28514d005dbce76ae51079c874bd4f413ff955b404753512099
SHA512

b014ae077283dfaffe1eed34b5b4940b65cf23df0230b8e0f67d00a09d5f2c2bc1975a039aa444bbac7c450ea4353c9f31b10c61a19bdb64a9937101c3da6f78
SSDEEP

1536:EN/Eyc0ydfyXZgctOMadtePU8YLyE2LRJ9VqDlzVxyh+CbxMa:EXISvtOManb8ZdRJ9IDlRxyhTb7

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7023f7fc0d2cc28514d005dbce76ae51079c874bd4f413ff955b404753512099
- Size
  
  80KB
- MD5
  
  78b0649786521fb073383648850267d0
- SHA1
  
  f5fa863ecb1059976c6d4260c94f2ce03edb1d5e
- SHA256
  
  7023f7fc0d2cc28514d005dbce76ae51079c874bd4f413ff955b404753512099
- SHA512
  
  b014ae077283dfaffe1eed34b5b4940b65cf23df0230b8e0f67d00a09d5f2c2bc1975a039aa444bbac7c450ea4353c9f31b10c61a19bdb64a9937101c3da6f78
- SSDEEP
  
  1536:EN/Eyc0ydfyXZgctOMadtePU8YLyE2LRJ9VqDlzVxyh+CbxMa:EXISvtOManb8ZdRJ9IDlRxyhTb7
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence