32ec743ce10b8c2dc90556b0516579d244127d51a85c1f9b7f771e0d23a19ca7 | Triage

Sharing

General

Target

32ec743ce10b8c2dc90556b0516579d244127d51a85c1f9b7f771e0d23a19ca7
Size

64KB
Sample

240828-zgsgwaxajk
MD5

0885a96f5924b4cec39acc70076d0dc0
SHA1

65edae6830170a5200fb492ae0c50058938ed9eb
SHA256

32ec743ce10b8c2dc90556b0516579d244127d51a85c1f9b7f771e0d23a19ca7
SHA512

dd4f65b45a6dcdd5b002a66c3e260c28a367d08b767053fffd304601dbb4206b2b19d2f180073cb53d1e08b418f8391c275dd92f246ac8fae4747d2b4224e540
SSDEEP

768:u8y+Nh+bWqdaVidzCbbwShKegTzqUxCXu0+92jhydFO3yqTAr8/1H5qXdnhgl72M:u1bHdaV5fKegXqUkO92EOi2A6SgNtn

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  32ec743ce10b8c2dc90556b0516579d244127d51a85c1f9b7f771e0d23a19ca7
- Size
  
  64KB
- MD5
  
  0885a96f5924b4cec39acc70076d0dc0
- SHA1
  
  65edae6830170a5200fb492ae0c50058938ed9eb
- SHA256
  
  32ec743ce10b8c2dc90556b0516579d244127d51a85c1f9b7f771e0d23a19ca7
- SHA512
  
  dd4f65b45a6dcdd5b002a66c3e260c28a367d08b767053fffd304601dbb4206b2b19d2f180073cb53d1e08b418f8391c275dd92f246ac8fae4747d2b4224e540
- SSDEEP
  
  768:u8y+Nh+bWqdaVidzCbbwShKegTzqUxCXu0+92jhydFO3yqTAr8/1H5qXdnhgl72M:u1bHdaV5fKegXqUkO92EOi2A6SgNtn
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence