d410e17684ce73fc9a665022318983df6deaa9977da6f49f4fb818188a161ad6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d410e17684ce73fc9a665022318983df6deaa9977da6f49f4fb818188a161ad6
Size

308KB
Sample

240825-glqjzayapb
MD5

77e68143858a497ecb92a0cc67037bae
SHA1

0ad11bc7e018b7ff9f1bd361961e0eb06ea112a2
SHA256

d410e17684ce73fc9a665022318983df6deaa9977da6f49f4fb818188a161ad6
SHA512

d0ad117562cb4ab6661fa8b331e449d838df48cbc742c8dc9624f2e4fb4336974a94d0087723ad08911a9eb8a5e24f8a126f3a511459d523a8974a24e7e59dcf
SSDEEP

3072:qq3GSn27SUwVCSf/bp0b+qSMJ6CereLjBP3mhg:qqeQT2LereLVmhg

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d410e17684ce73fc9a665022318983df6deaa9977da6f49f4fb818188a161ad6
- Size
  
  308KB
- MD5
  
  77e68143858a497ecb92a0cc67037bae
- SHA1
  
  0ad11bc7e018b7ff9f1bd361961e0eb06ea112a2
- SHA256
  
  d410e17684ce73fc9a665022318983df6deaa9977da6f49f4fb818188a161ad6
- SHA512
  
  d0ad117562cb4ab6661fa8b331e449d838df48cbc742c8dc9624f2e4fb4336974a94d0087723ad08911a9eb8a5e24f8a126f3a511459d523a8974a24e7e59dcf
- SSDEEP
  
  3072:qq3GSn27SUwVCSf/bp0b+qSMJ6CereLjBP3mhg:qqeQT2LereLVmhg
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence