f0a258773940419adfece81fac15aef995f986ab4a404589a7267cf34076ff20 | Triage

Sharing

General

Target

39d5c8d138d03a55b7f5f09e80c2e2d0N
Size

323KB
Sample

240829-dzx97atcjj
MD5

39d5c8d138d03a55b7f5f09e80c2e2d0
SHA1

4e073f36fb74c0dffe287050418292faefd8dc8c
SHA256

f0a258773940419adfece81fac15aef995f986ab4a404589a7267cf34076ff20
SHA512

19cb29692ac54a0e6a74ccc5b722e52a499037353f37d81c9f201c543a3b996dab3eee4562c245a1f116e7bda5ac7e912bc6ed0cfd6e0ce9a3103fbbcdaf1428
SSDEEP

6144:Mi5e+rKmlljd3rKzwN8Jlljd3njPX9ZAk3fs:NBzjpKXjtjP9Zt0

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  39d5c8d138d03a55b7f5f09e80c2e2d0N
- Size
  
  323KB
- MD5
  
  39d5c8d138d03a55b7f5f09e80c2e2d0
- SHA1
  
  4e073f36fb74c0dffe287050418292faefd8dc8c
- SHA256
  
  f0a258773940419adfece81fac15aef995f986ab4a404589a7267cf34076ff20
- SHA512
  
  19cb29692ac54a0e6a74ccc5b722e52a499037353f37d81c9f201c543a3b996dab3eee4562c245a1f116e7bda5ac7e912bc6ed0cfd6e0ce9a3103fbbcdaf1428
- SSDEEP
  
  6144:Mi5e+rKmlljd3rKzwN8Jlljd3njPX9ZAk3fs:NBzjpKXjtjP9Zt0
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence