013d7f7845db17d966f2d2d792f946d591f4f0bde99dd52c0b90009a9b071ef2 | Triage

Sharing

General

Target

013d7f7845db17d966f2d2d792f946d591f4f0bde99dd52c0b90009a9b071ef2
Size

290KB
Sample

240824-yda8raxemr
MD5

b54bb129e59ae7344d7f4d217a9874fe
SHA1

a02b350f4b2dece590b9d41e803e836d2e1dd465
SHA256

013d7f7845db17d966f2d2d792f946d591f4f0bde99dd52c0b90009a9b071ef2
SHA512

f243676029d2be184cf5728028206ee620e816cb73c4bd30cc96e9b38bd68889e164707abb73b33fc0c9d41983e32e6c2c31266ffbb258134f8790056116818c
SSDEEP

3072:at2iyz0D3EVdHs0ZXeHUKgHq/Wp+YmKfxgQdxvzSTsXXoT2971qqWMuA7ZCgHq/e:aaNK0KUmKyIxLDXXoq9FJZCUmKyIxL

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  013d7f7845db17d966f2d2d792f946d591f4f0bde99dd52c0b90009a9b071ef2
- Size
  
  290KB
- MD5
  
  b54bb129e59ae7344d7f4d217a9874fe
- SHA1
  
  a02b350f4b2dece590b9d41e803e836d2e1dd465
- SHA256
  
  013d7f7845db17d966f2d2d792f946d591f4f0bde99dd52c0b90009a9b071ef2
- SHA512
  
  f243676029d2be184cf5728028206ee620e816cb73c4bd30cc96e9b38bd68889e164707abb73b33fc0c9d41983e32e6c2c31266ffbb258134f8790056116818c
- SSDEEP
  
  3072:at2iyz0D3EVdHs0ZXeHUKgHq/Wp+YmKfxgQdxvzSTsXXoT2971qqWMuA7ZCgHq/e:aaNK0KUmKyIxLDXXoq9FJZCUmKyIxL
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence