b325e2af16610a8c22d73e8e302968befdd05d814a97af621326497eb087934a | Triage

Sharing

General

Target

b325e2af16610a8c22d73e8e302968befdd05d814a97af621326497eb087934a
Size

89KB
Sample

240824-bp4m4szdqk
MD5

401d5631b54936cfdbe177ebd8360d78
SHA1

3931e4de0d69b624d66bf52691c3c6fa4ad7cd94
SHA256

b325e2af16610a8c22d73e8e302968befdd05d814a97af621326497eb087934a
SHA512

7f6ee80394d794913f65339398c2f091df88466a2aade2821be57c8474268ee118fc9cff1cd3b61d239b57493e637f2feed4b3f75b7010f500a8225123ffeeec
SSDEEP

1536:kcgsOCYzUZojVC3uDD5hApmLKtmcXptbmsCIK282c8CPGCECa9bC7e3iaqWpOBMD:d1oj3DD5hTLWnZtbmhD28Qxnd9GMHqW/

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b325e2af16610a8c22d73e8e302968befdd05d814a97af621326497eb087934a
- Size
  
  89KB
- MD5
  
  401d5631b54936cfdbe177ebd8360d78
- SHA1
  
  3931e4de0d69b624d66bf52691c3c6fa4ad7cd94
- SHA256
  
  b325e2af16610a8c22d73e8e302968befdd05d814a97af621326497eb087934a
- SHA512
  
  7f6ee80394d794913f65339398c2f091df88466a2aade2821be57c8474268ee118fc9cff1cd3b61d239b57493e637f2feed4b3f75b7010f500a8225123ffeeec
- SSDEEP
  
  1536:kcgsOCYzUZojVC3uDD5hApmLKtmcXptbmsCIK282c8CPGCECa9bC7e3iaqWpOBMD:d1oj3DD5hTLWnZtbmhD28Qxnd9GMHqW/
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence