a4c22c0627b299f5dc6773b0e2c75822101dae2b39ebddc1394f684ed9802312 | Triage

Sharing

General

Target

a4c22c0627b299f5dc6773b0e2c75822101dae2b39ebddc1394f684ed9802312
Size

511KB
Sample

240903-b2r5vavcne
MD5

7185f1447866935007f9878e1dc362a0
SHA1

4614bd179ea1e947e9551ed25fb29b072ec4691f
SHA256

a4c22c0627b299f5dc6773b0e2c75822101dae2b39ebddc1394f684ed9802312
SHA512

374d817c6c6faccc352365b87174fa75cf646a83704b373757dcb71e63769be6852362c8a96adeda4e7db5ad0018cf7251be47ec94863a41b8a75ae0ad9ad7c0
SSDEEP

12288:anlc87eqqV5e+wBV6O+LaJpDu1ywY6fAe4ewDLWRRLNjVlp4:anSqqHeVBxFBS26frNcoRLPlp4

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  a4c22c0627b299f5dc6773b0e2c75822101dae2b39ebddc1394f684ed9802312
- Size
  
  511KB
- MD5
  
  7185f1447866935007f9878e1dc362a0
- SHA1
  
  4614bd179ea1e947e9551ed25fb29b072ec4691f
- SHA256
  
  a4c22c0627b299f5dc6773b0e2c75822101dae2b39ebddc1394f684ed9802312
- SHA512
  
  374d817c6c6faccc352365b87174fa75cf646a83704b373757dcb71e63769be6852362c8a96adeda4e7db5ad0018cf7251be47ec94863a41b8a75ae0ad9ad7c0
- SSDEEP
  
  12288:anlc87eqqV5e+wBV6O+LaJpDu1ywY6fAe4ewDLWRRLNjVlp4:anSqqHeVBxFBS26frNcoRLPlp4
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence