1daac9ff2e210d5110775bbe04fd83d81d77c68132899fa28a4a0db3bf005605 | Triage

Sharing

General

Target

1daac9ff2e210d5110775bbe04fd83d81d77c68132899fa28a4a0db3bf005605
Size

276KB
Sample

240825-x92vxasepj
MD5

467152ded8f2db15af4a247f3051fa48
SHA1

db171806c004ea9a5324feac526f628bcc27f9c8
SHA256

1daac9ff2e210d5110775bbe04fd83d81d77c68132899fa28a4a0db3bf005605
SHA512

1978ffc6b85247cdade5fbf353f337c270257e0f915ca6760637f87d468266817847def67119f48d3a46ed292b4d6aadb2acc1175c81dc6576d66e83bffbd106
SSDEEP

3072:WD5mLDqdIsnm/xityuleS5pAgYIqGvJ6887lbyMGjXF1kqaholmtbCQVDrM8d7w3:W8DTsm/xixldZMGXF5ahdt3rM8d7TtLa

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1daac9ff2e210d5110775bbe04fd83d81d77c68132899fa28a4a0db3bf005605
- Size
  
  276KB
- MD5
  
  467152ded8f2db15af4a247f3051fa48
- SHA1
  
  db171806c004ea9a5324feac526f628bcc27f9c8
- SHA256
  
  1daac9ff2e210d5110775bbe04fd83d81d77c68132899fa28a4a0db3bf005605
- SHA512
  
  1978ffc6b85247cdade5fbf353f337c270257e0f915ca6760637f87d468266817847def67119f48d3a46ed292b4d6aadb2acc1175c81dc6576d66e83bffbd106
- SSDEEP
  
  3072:WD5mLDqdIsnm/xityuleS5pAgYIqGvJ6887lbyMGjXF1kqaholmtbCQVDrM8d7w3:W8DTsm/xixldZMGXF5ahdt3rM8d7TtLa
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence