528454f7c75f63a8317c09ac2f42f62222dec16301c85fb68d55fb521534a37e | Triage

Sharing

General

Target

f70474c10885ead485d93f0e201b5f50N
Size

556KB
Sample

240826-jw5gzsveln
MD5

f70474c10885ead485d93f0e201b5f50
SHA1

3502d812770ac0ac0a31ba22e550daaf838f7647
SHA256

528454f7c75f63a8317c09ac2f42f62222dec16301c85fb68d55fb521534a37e
SHA512

f1d221b147fab5cf92b33c9d7eb6b77023a486e590f6a6e148fefef564f3580c6c696b9dcb00990fd41a0bd18588b5cafb18da388b7fb89493e0334b1247682b
SSDEEP

12288:P94gWD9b/J7aOlxzr3cOK3TajRfXFMKNxr9Z7tEGVqT4Df:P6gWD9b/J7aOlxzLyTajRfXFMKNxr9Zv

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f70474c10885ead485d93f0e201b5f50N
- Size
  
  556KB
- MD5
  
  f70474c10885ead485d93f0e201b5f50
- SHA1
  
  3502d812770ac0ac0a31ba22e550daaf838f7647
- SHA256
  
  528454f7c75f63a8317c09ac2f42f62222dec16301c85fb68d55fb521534a37e
- SHA512
  
  f1d221b147fab5cf92b33c9d7eb6b77023a486e590f6a6e148fefef564f3580c6c696b9dcb00990fd41a0bd18588b5cafb18da388b7fb89493e0334b1247682b
- SSDEEP
  
  12288:P94gWD9b/J7aOlxzr3cOK3TajRfXFMKNxr9Z7tEGVqT4Df:P6gWD9b/J7aOlxzLyTajRfXFMKNxr9Zv
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence