220742d5c97532d9bfdd7357db004c619db70f738a67fccd0f879c640ff61c43 | Triage

Sharing

General

Target

220742d5c97532d9bfdd7357db004c619db70f738a67fccd0f879c640ff61c43
Size

559KB
Sample

240901-y2dnsa1dmg
MD5

bddae7647592f19929eb80435acedf3d
SHA1

dbe6bfec521d511b98412d75f44a13bb5fd0115e
SHA256

220742d5c97532d9bfdd7357db004c619db70f738a67fccd0f879c640ff61c43
SHA512

99787d521e3a05fae8a913afca7cf26ca742f90cb6090861ddfe27e8b366fecfe7c851591cd10b14ce86de30b1081dd41379b73e843040e7e1b9f744d93def3c
SSDEEP

6144:RQUQHIbM5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/wH5CPXbo92ynnZlVrtS:R2HIwFHRFbe7QFHRFbe73

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  220742d5c97532d9bfdd7357db004c619db70f738a67fccd0f879c640ff61c43
- Size
  
  559KB
- MD5
  
  bddae7647592f19929eb80435acedf3d
- SHA1
  
  dbe6bfec521d511b98412d75f44a13bb5fd0115e
- SHA256
  
  220742d5c97532d9bfdd7357db004c619db70f738a67fccd0f879c640ff61c43
- SHA512
  
  99787d521e3a05fae8a913afca7cf26ca742f90cb6090861ddfe27e8b366fecfe7c851591cd10b14ce86de30b1081dd41379b73e843040e7e1b9f744d93def3c
- SSDEEP
  
  6144:RQUQHIbM5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/wH5CPXbo92ynnZlVrtS:R2HIwFHRFbe7QFHRFbe73
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence