89056be36de3f47d5e66d968d464abd1fc64171e7667227306750229533124b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89056be36de3f47d5e66d968d464abd1fc64171e7667227306750229533124b9
Size

78KB
Sample

240823-2zx67atgrl
MD5

0d05a2f14043dcce50fb0d4009b8245d
SHA1

e76569b2bbe58241fec43695d85f7524cf917faf
SHA256

89056be36de3f47d5e66d968d464abd1fc64171e7667227306750229533124b9
SHA512

916fb2d01ae38335cf4aeab1b1e700dc9005ce51dc3a190448d711459bbd6d4b4edfb59ded9d7342b19b387597c51aae444822c731778efd77aba9cec103785c
SSDEEP

1536:Fht4VJDkkYlvtNtb/ebokkf8eUbUHmoD6oz9f1F210deQQiVaN+zL20gJi1ie:TtUMlvtNtb/Sokkf8eUbUHHJzF210dek

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  89056be36de3f47d5e66d968d464abd1fc64171e7667227306750229533124b9
- Size
  
  78KB
- MD5
  
  0d05a2f14043dcce50fb0d4009b8245d
- SHA1
  
  e76569b2bbe58241fec43695d85f7524cf917faf
- SHA256
  
  89056be36de3f47d5e66d968d464abd1fc64171e7667227306750229533124b9
- SHA512
  
  916fb2d01ae38335cf4aeab1b1e700dc9005ce51dc3a190448d711459bbd6d4b4edfb59ded9d7342b19b387597c51aae444822c731778efd77aba9cec103785c
- SSDEEP
  
  1536:Fht4VJDkkYlvtNtb/ebokkf8eUbUHmoD6oz9f1F210deQQiVaN+zL20gJi1ie:TtUMlvtNtb/Sokkf8eUbUHHJzF210dek
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence