a666c1e6e095343ea81e1535e993b3c35cb635040139d270f68139a94c998d05 | Triage

Sharing

General

Target

834d85052fca37366b7b1350ce574290N
Size

128KB
Sample

240826-apztgstfqb
MD5

834d85052fca37366b7b1350ce574290
SHA1

78ffc0aa2529b9e08d5c3b5aa491521657d2e039
SHA256

a666c1e6e095343ea81e1535e993b3c35cb635040139d270f68139a94c998d05
SHA512

88cae75c70c7135b6d5fc10da9ef102b190b8720661af12b1b141c584059f3a8430c375b346fe0516dcaedc4d08b1e298643dafcb68e71500a978610a37393ac
SSDEEP

3072:kCTzwx+t4LTYAwbGmHEQk8QYxQdLrCimBaH8UH30ZIvM6qMH5X3O/:HTzwx6MTYAXkEQFtCApaH8m3QIvMWH5H

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  834d85052fca37366b7b1350ce574290N
- Size
  
  128KB
- MD5
  
  834d85052fca37366b7b1350ce574290
- SHA1
  
  78ffc0aa2529b9e08d5c3b5aa491521657d2e039
- SHA256
  
  a666c1e6e095343ea81e1535e993b3c35cb635040139d270f68139a94c998d05
- SHA512
  
  88cae75c70c7135b6d5fc10da9ef102b190b8720661af12b1b141c584059f3a8430c375b346fe0516dcaedc4d08b1e298643dafcb68e71500a978610a37393ac
- SSDEEP
  
  3072:kCTzwx+t4LTYAwbGmHEQk8QYxQdLrCimBaH8UH30ZIvM6qMH5X3O/:HTzwx6MTYAXkEQFtCApaH8m3QIvMWH5H
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence