12ae5a7fa33b1bc99623e34b70ed9a448b704664f7a8740cfa3d3eef9db709cf | Triage

Sharing

General

Target

12ae5a7fa33b1bc99623e34b70ed9a448b704664f7a8740cfa3d3eef9db709cf
Size

370KB
Sample

240823-z86tkszbqq
MD5

96cc4e53f827ea81445f0b40486f5819
SHA1

d52453a9d6487f491f703b114b50b3498b91f846
SHA256

12ae5a7fa33b1bc99623e34b70ed9a448b704664f7a8740cfa3d3eef9db709cf
SHA512

ea7c052f4cd0d1549f286fffd9b573b48d8c9989dba1ffbf612046618d064007b4791a6043a0c18a1876fe20e280e62dabf723c9f9f1a49573e6b0d08d02b5bb
SSDEEP

6144:zBlPL9YpNyGpNDU9fwRE5H2dpNonHd/twMLc2Ao2pEYTBFqZNjE1rhJg3htVtnH7:zpqUfCyHJWx67fLx67

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  12ae5a7fa33b1bc99623e34b70ed9a448b704664f7a8740cfa3d3eef9db709cf
- Size
  
  370KB
- MD5
  
  96cc4e53f827ea81445f0b40486f5819
- SHA1
  
  d52453a9d6487f491f703b114b50b3498b91f846
- SHA256
  
  12ae5a7fa33b1bc99623e34b70ed9a448b704664f7a8740cfa3d3eef9db709cf
- SHA512
  
  ea7c052f4cd0d1549f286fffd9b573b48d8c9989dba1ffbf612046618d064007b4791a6043a0c18a1876fe20e280e62dabf723c9f9f1a49573e6b0d08d02b5bb
- SSDEEP
  
  6144:zBlPL9YpNyGpNDU9fwRE5H2dpNonHd/twMLc2Ao2pEYTBFqZNjE1rhJg3htVtnH7:zpqUfCyHJWx67fLx67
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence