50458393b29c324be732ff9ea79ceefadf4f12d9c43d15b224fbc671afad0a9d | Triage

Sharing

General

Target

50458393b29c324be732ff9ea79ceefadf4f12d9c43d15b224fbc671afad0a9d
Size

96KB
Sample

240903-1pz3csyhlh
MD5

aa2951aafe2c8fa81e5ea34b2bd3db89
SHA1

d6e030529040a5900ce22ac05e46f20cd34c302b
SHA256

50458393b29c324be732ff9ea79ceefadf4f12d9c43d15b224fbc671afad0a9d
SHA512

d48971cce1523390fa71046ac2a9c27e9090a58dafaefeb87d0dd0a3443eaac00150d49fe0306ef7b70843add086ad8fd98a64ff97355e920d2076457fee942d
SSDEEP

1536:ZEGC8r5gyCCge3jpAoO2Lk1mPXuhiTMuZXGTIVefVDkryyAyqX:jGrizLTamPXuhuXGQmVDeCyqX

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  50458393b29c324be732ff9ea79ceefadf4f12d9c43d15b224fbc671afad0a9d
- Size
  
  96KB
- MD5
  
  aa2951aafe2c8fa81e5ea34b2bd3db89
- SHA1
  
  d6e030529040a5900ce22ac05e46f20cd34c302b
- SHA256
  
  50458393b29c324be732ff9ea79ceefadf4f12d9c43d15b224fbc671afad0a9d
- SHA512
  
  d48971cce1523390fa71046ac2a9c27e9090a58dafaefeb87d0dd0a3443eaac00150d49fe0306ef7b70843add086ad8fd98a64ff97355e920d2076457fee942d
- SSDEEP
  
  1536:ZEGC8r5gyCCge3jpAoO2Lk1mPXuhiTMuZXGTIVefVDkryyAyqX:jGrizLTamPXuhuXGQmVDeCyqX
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence