dab5e621a978584c34e736f3f188ab7bf00923eb15864edb2b8f84eb21f8686d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dab5e621a978584c34e736f3f188ab7bf00923eb15864edb2b8f84eb21f8686d
Size

71KB
Sample

240824-fhvh3swbmj
MD5

16b15b22adaee815131fae51458f9f4e
SHA1

35ceba71ab0eb1089b4171e67dfefebc69f951e6
SHA256

dab5e621a978584c34e736f3f188ab7bf00923eb15864edb2b8f84eb21f8686d
SHA512

065c0e4e1a2e23764b81da949bae907e0b0217d603e72fd99b58ccaf846a360a97c66d99e6fa6671889c0928a86623f6656d399dfb37ee2b839703b99f764c50
SSDEEP

1536:vCGFg40ilbt+4941aTc7cPZwMmdYx9tSTiVMfIRQcFK1P+ATT:vCGj0iJt7K1uc72w5Wx9t5iAePP+A3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  dab5e621a978584c34e736f3f188ab7bf00923eb15864edb2b8f84eb21f8686d
- Size
  
  71KB
- MD5
  
  16b15b22adaee815131fae51458f9f4e
- SHA1
  
  35ceba71ab0eb1089b4171e67dfefebc69f951e6
- SHA256
  
  dab5e621a978584c34e736f3f188ab7bf00923eb15864edb2b8f84eb21f8686d
- SHA512
  
  065c0e4e1a2e23764b81da949bae907e0b0217d603e72fd99b58ccaf846a360a97c66d99e6fa6671889c0928a86623f6656d399dfb37ee2b839703b99f764c50
- SSDEEP
  
  1536:vCGFg40ilbt+4941aTc7cPZwMmdYx9tSTiVMfIRQcFK1P+ATT:vCGj0iJt7K1uc72w5Wx9t5iAePP+A3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence