48dae7bd0436e482d655ead66d62b099fab1d05991246aa379574e3be55db6da | Triage

Sharing

General

Target

48dae7bd0436e482d655ead66d62b099fab1d05991246aa379574e3be55db6da
Size

80KB
Sample

240901-1rdbdasfmk
MD5

49c0499bb4925acc904efff5b68db0f1
SHA1

f4254484eac61f587143b5ef1252bc730660ebf7
SHA256

48dae7bd0436e482d655ead66d62b099fab1d05991246aa379574e3be55db6da
SHA512

1329054de027594bb59ff52bff0fcb8f63d3fdb1b2f047333fcfbf998e9a2ab7d7b3e5a48c911ead2bde39fd47dcc2dbe233bbbef3bc3d1359d219e778deabfe
SSDEEP

1536:niX/mIw3ePzWupV32L5J9VqDlzVxyh+CbxMa:n3XefpC5J9IDlRxyhTb7

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  48dae7bd0436e482d655ead66d62b099fab1d05991246aa379574e3be55db6da
- Size
  
  80KB
- MD5
  
  49c0499bb4925acc904efff5b68db0f1
- SHA1
  
  f4254484eac61f587143b5ef1252bc730660ebf7
- SHA256
  
  48dae7bd0436e482d655ead66d62b099fab1d05991246aa379574e3be55db6da
- SHA512
  
  1329054de027594bb59ff52bff0fcb8f63d3fdb1b2f047333fcfbf998e9a2ab7d7b3e5a48c911ead2bde39fd47dcc2dbe233bbbef3bc3d1359d219e778deabfe
- SSDEEP
  
  1536:niX/mIw3ePzWupV32L5J9VqDlzVxyh+CbxMa:n3XefpC5J9IDlRxyhTb7
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence