92e7f4a6137b266f89dd1ff475cd81d5a7244f3e4f43f000b02903eafddc6f13 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

92e7f4a6137b266f89dd1ff475cd81d5a7244f3e4f43f000b02903eafddc6f13
Size

60KB
Sample

240823-3gt79atbrg
MD5

88d32a39c2d8c9f4e76d4399f49faf22
SHA1

dba28ca690de33be50b55c546ae884ced764e69b
SHA256

92e7f4a6137b266f89dd1ff475cd81d5a7244f3e4f43f000b02903eafddc6f13
SHA512

4c319c466d8a72a18788000680486c9e71ccd55c9d7a96d196f4302f0867edd7e50f1ded4d84acb886b64fb4615fb840ed8c32e5a9e563fbc16bc4e769f4165d
SSDEEP

768:DoQ0Gi2hJ0BYPLTQl0zs0uXjB0OrE2ZrS6mx951340rZ/1H5Kt5B+XdnhMl/Xdnr:DO29DTQSzHuXmORZrNmxp/UHB86l1r

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  92e7f4a6137b266f89dd1ff475cd81d5a7244f3e4f43f000b02903eafddc6f13
- Size
  
  60KB
- MD5
  
  88d32a39c2d8c9f4e76d4399f49faf22
- SHA1
  
  dba28ca690de33be50b55c546ae884ced764e69b
- SHA256
  
  92e7f4a6137b266f89dd1ff475cd81d5a7244f3e4f43f000b02903eafddc6f13
- SHA512
  
  4c319c466d8a72a18788000680486c9e71ccd55c9d7a96d196f4302f0867edd7e50f1ded4d84acb886b64fb4615fb840ed8c32e5a9e563fbc16bc4e769f4165d
- SSDEEP
  
  768:DoQ0Gi2hJ0BYPLTQl0zs0uXjB0OrE2ZrS6mx951340rZ/1H5Kt5B+XdnhMl/Xdnr:DO29DTQSzHuXmORZrNmxp/UHB86l1r
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence