feaa8c317f593462c0983266e52e44b7ea1e63226500ec90dee09484e5c9fec8 | Triage

Sharing

General

Target

feaa8c317f593462c0983266e52e44b7ea1e63226500ec90dee09484e5c9fec8
Size

62KB
Sample

240829-gj4zkswgkd
MD5

0c860dd0f5f6c6cef02a1e82f96baec8
SHA1

adcac067e0959107de6f80aa00b2889c424f9c3d
SHA256

feaa8c317f593462c0983266e52e44b7ea1e63226500ec90dee09484e5c9fec8
SHA512

7cf87cd23523bf90290f0a8a276c0cdb489ec7c48cc9293362e8711dd3cb753f637bf8d99486de443a6dc102d91c05fa80b9bd4a90af2c92c63170087b04cbdd
SSDEEP

1536:TX4SgHjbq7vZ9W2V1pg4kZHGw72Z4kM1z:7P8nq7LW2LChZmwKZtgz

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  feaa8c317f593462c0983266e52e44b7ea1e63226500ec90dee09484e5c9fec8
- Size
  
  62KB
- MD5
  
  0c860dd0f5f6c6cef02a1e82f96baec8
- SHA1
  
  adcac067e0959107de6f80aa00b2889c424f9c3d
- SHA256
  
  feaa8c317f593462c0983266e52e44b7ea1e63226500ec90dee09484e5c9fec8
- SHA512
  
  7cf87cd23523bf90290f0a8a276c0cdb489ec7c48cc9293362e8711dd3cb753f637bf8d99486de443a6dc102d91c05fa80b9bd4a90af2c92c63170087b04cbdd
- SSDEEP
  
  1536:TX4SgHjbq7vZ9W2V1pg4kZHGw72Z4kM1z:7P8nq7LW2LChZmwKZtgz
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence