1ac29547ca8ece2d9b3865a8d4068d611530f6fdbb11c7f69d3dd8d84c952a53 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1ac14ab66f26f94d81462cbb1f41850N.exe
Size

91KB
Sample

240829-clkw9szgnr
MD5

b1ac14ab66f26f94d81462cbb1f41850
SHA1

2ec446cf0977847180386318b706273db9ed5ff5
SHA256

1ac29547ca8ece2d9b3865a8d4068d611530f6fdbb11c7f69d3dd8d84c952a53
SHA512

05b9fae8227c2c139ba62bc125bbfe2a946ff832eeec04b71b780588495d4f63135945d905de168660ab1042ed58c6e28911b611cd54c3ac34789ed326ed45b5
SSDEEP

1536:+F/Oc/gh7i5KjdI/AlinW+tapUoDwUVXIYr/viVMi:+FGpibAlEW+4UoDwa4o/vOMi

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b1ac14ab66f26f94d81462cbb1f41850N.exe
- Size
  
  91KB
- MD5
  
  b1ac14ab66f26f94d81462cbb1f41850
- SHA1
  
  2ec446cf0977847180386318b706273db9ed5ff5
- SHA256
  
  1ac29547ca8ece2d9b3865a8d4068d611530f6fdbb11c7f69d3dd8d84c952a53
- SHA512
  
  05b9fae8227c2c139ba62bc125bbfe2a946ff832eeec04b71b780588495d4f63135945d905de168660ab1042ed58c6e28911b611cd54c3ac34789ed326ed45b5
- SSDEEP
  
  1536:+F/Oc/gh7i5KjdI/AlinW+tapUoDwUVXIYr/viVMi:+FGpibAlEW+4UoDwa4o/vOMi
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence