114e5fae48c41364513cbc98ee3f9c8f0a8d124cb37ddc93d682ce315b778406 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

114e5fae48c41364513cbc98ee3f9c8f0a8d124cb37ddc93d682ce315b778406
Size

237KB
Sample

240824-x8wx9svgnf
MD5

47652cae9eee0ba8b7b1250b4be237e5
SHA1

01d50a9b1ca9903012f5dc9a1638bdc0c822e686
SHA256

114e5fae48c41364513cbc98ee3f9c8f0a8d124cb37ddc93d682ce315b778406
SHA512

dbdb91df62c4f8585da8a8b9cc32cdb56a37fb4dbdf9db9443a525933ead218add02c85b93ef3e9cacb94431f3dc988c4288844c5f9d5cbfbd0ce068eed910f1
SSDEEP

3072:Zb2N5pGC9FPUFpJnAUbj8Nq75Sq4iqnAUUjE02ZoL9snKKq:ZiN5jiFfnXj8U5ihYjEToZY8

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  114e5fae48c41364513cbc98ee3f9c8f0a8d124cb37ddc93d682ce315b778406
- Size
  
  237KB
- MD5
  
  47652cae9eee0ba8b7b1250b4be237e5
- SHA1
  
  01d50a9b1ca9903012f5dc9a1638bdc0c822e686
- SHA256
  
  114e5fae48c41364513cbc98ee3f9c8f0a8d124cb37ddc93d682ce315b778406
- SHA512
  
  dbdb91df62c4f8585da8a8b9cc32cdb56a37fb4dbdf9db9443a525933ead218add02c85b93ef3e9cacb94431f3dc988c4288844c5f9d5cbfbd0ce068eed910f1
- SSDEEP
  
  3072:Zb2N5pGC9FPUFpJnAUbj8Nq75Sq4iqnAUUjE02ZoL9snKKq:ZiN5jiFfnXj8U5ihYjEToZY8
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence