aac88f67412f7d4a8aa24b8e94449cc0a0f3672822363e5e8219982cffcd1de9 | Triage

Sharing

General

Target

aac88f67412f7d4a8aa24b8e94449cc0a0f3672822363e5e8219982cffcd1de9
Size

443KB
Sample

240829-b2r5vayglk
MD5

162d18f195c53c8083002c3d3b5378af
SHA1

5b7ea2b1e61ba323b2aa6f04a7e5f2aba8938837
SHA256

aac88f67412f7d4a8aa24b8e94449cc0a0f3672822363e5e8219982cffcd1de9
SHA512

7e6aa6e5acfcad70479c1b1f8d7912808aec8f807c8ac8ca00b52461b7c23c15aa5b6b94cb11ee486507df141c7ede65362bb563b2666d07bfd9ab7adda31dda
SSDEEP

6144:jTD4HnTTTQ9dMo7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjws1:k09d/1J1HJ1Uj+HiPj

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  aac88f67412f7d4a8aa24b8e94449cc0a0f3672822363e5e8219982cffcd1de9
- Size
  
  443KB
- MD5
  
  162d18f195c53c8083002c3d3b5378af
- SHA1
  
  5b7ea2b1e61ba323b2aa6f04a7e5f2aba8938837
- SHA256
  
  aac88f67412f7d4a8aa24b8e94449cc0a0f3672822363e5e8219982cffcd1de9
- SHA512
  
  7e6aa6e5acfcad70479c1b1f8d7912808aec8f807c8ac8ca00b52461b7c23c15aa5b6b94cb11ee486507df141c7ede65362bb563b2666d07bfd9ab7adda31dda
- SSDEEP
  
  6144:jTD4HnTTTQ9dMo7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjws1:k09d/1J1HJ1Uj+HiPj
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence