0184208d630468ea46a04dfd25d02ca9f14c8413818ad8d9a883948aca2d2746 | Triage

Sharing

General

Target

0184208d630468ea46a04dfd25d02ca9f14c8413818ad8d9a883948aca2d2746
Size

74KB
Sample

240828-wsajnayhmh
MD5

45799d6ff09ecb6033e11add26a4d471
SHA1

d0d5e0a48316c90b8009de992951c160b020cf3d
SHA256

0184208d630468ea46a04dfd25d02ca9f14c8413818ad8d9a883948aca2d2746
SHA512

e76a5de75aa9fdc88146e926280548df4e98f20e45d67e1dc36ab2238bd368a2c6d2bdbcaffd01fe7b3d4260b75af19fd6defc7add4d66c1e01bbf5380f15449
SSDEEP

1536:TRt+jWQKOyu9dPXosS+1V8SBL9lm89W/VSVGWV9kzf:SjdjsqL8SBLG8iVSVGWV9kT

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  0184208d630468ea46a04dfd25d02ca9f14c8413818ad8d9a883948aca2d2746
- Size
  
  74KB
- MD5
  
  45799d6ff09ecb6033e11add26a4d471
- SHA1
  
  d0d5e0a48316c90b8009de992951c160b020cf3d
- SHA256
  
  0184208d630468ea46a04dfd25d02ca9f14c8413818ad8d9a883948aca2d2746
- SHA512
  
  e76a5de75aa9fdc88146e926280548df4e98f20e45d67e1dc36ab2238bd368a2c6d2bdbcaffd01fe7b3d4260b75af19fd6defc7add4d66c1e01bbf5380f15449
- SSDEEP
  
  1536:TRt+jWQKOyu9dPXosS+1V8SBL9lm89W/VSVGWV9kzf:SjdjsqL8SBLG8iVSVGWV9kT
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence