57f21f3b07f85167975e47e26d6cfd3f18fd7078385f0f22e7ea64999e6a26fe | Triage

Sharing

General

Target

57f21f3b07f85167975e47e26d6cfd3f18fd7078385f0f22e7ea64999e6a26fe
Size

72KB
Sample

240902-1xv4daybkk
MD5

ebc6dd43160343659d76e9f25a380923
SHA1

51ce8adc06ae057c1ef994d3c510725c3aff7806
SHA256

57f21f3b07f85167975e47e26d6cfd3f18fd7078385f0f22e7ea64999e6a26fe
SHA512

13f8b89b69f422e9f69373b9b825bcbdea0f3efd293d8d765a8a71ef7bafe18583bd3a0a2b0ada1bf63eb02ebe273937c0aae5c36a7594be9523ba0380a316ce
SSDEEP

1536:JuvbURwunczVHNpadRWEfV9m3sF/CX1rxxT:JuDURnsVHrCN9m3sUFr3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  57f21f3b07f85167975e47e26d6cfd3f18fd7078385f0f22e7ea64999e6a26fe
- Size
  
  72KB
- MD5
  
  ebc6dd43160343659d76e9f25a380923
- SHA1
  
  51ce8adc06ae057c1ef994d3c510725c3aff7806
- SHA256
  
  57f21f3b07f85167975e47e26d6cfd3f18fd7078385f0f22e7ea64999e6a26fe
- SHA512
  
  13f8b89b69f422e9f69373b9b825bcbdea0f3efd293d8d765a8a71ef7bafe18583bd3a0a2b0ada1bf63eb02ebe273937c0aae5c36a7594be9523ba0380a316ce
- SSDEEP
  
  1536:JuvbURwunczVHNpadRWEfV9m3sF/CX1rxxT:JuDURnsVHrCN9m3sUFr3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence