1831f5e7d699652d4c69bdf2403503495bf5ae25941b21d1a4794e2769aa558b | Triage

Sharing

General

Target

1831f5e7d699652d4c69bdf2403503495bf5ae25941b21d1a4794e2769aa558b
Size

322KB
Sample

240825-xx766azerh
MD5

45d16df9e2e09ef07437f8b0593eb4e2
SHA1

6def33f7933de28c11ce8acdc8f8c74d09efb5ad
SHA256

1831f5e7d699652d4c69bdf2403503495bf5ae25941b21d1a4794e2769aa558b
SHA512

daa80f0f5bc7925d56da5f2de71d7d36e6a8a7e1ba26050585b9b985de27d8ff8f3533bedebe5567ad399cb77bcddf3ee9e78874c42e9441cfd3d26981af9be5
SSDEEP

1536:fdhkL7Nzy+c7igAl/60ZKnAatQRQJTmDhdF+PhJFTq1dlCsTx4LB:fbkvN0Xk68Kn9WeJSVGZ3Odl

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1831f5e7d699652d4c69bdf2403503495bf5ae25941b21d1a4794e2769aa558b
- Size
  
  322KB
- MD5
  
  45d16df9e2e09ef07437f8b0593eb4e2
- SHA1
  
  6def33f7933de28c11ce8acdc8f8c74d09efb5ad
- SHA256
  
  1831f5e7d699652d4c69bdf2403503495bf5ae25941b21d1a4794e2769aa558b
- SHA512
  
  daa80f0f5bc7925d56da5f2de71d7d36e6a8a7e1ba26050585b9b985de27d8ff8f3533bedebe5567ad399cb77bcddf3ee9e78874c42e9441cfd3d26981af9be5
- SSDEEP
  
  1536:fdhkL7Nzy+c7igAl/60ZKnAatQRQJTmDhdF+PhJFTq1dlCsTx4LB:fbkvN0Xk68Kn9WeJSVGZ3Odl
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence