0ef9c7adc077063d0f4b6f24f36dc01be7a843426e82a7e3e9fb3684c6354d4c | Triage

Sharing

General

Target

0ef9c7adc077063d0f4b6f24f36dc01be7a843426e82a7e3e9fb3684c6354d4c
Size

96KB
Sample

240903-xdxajsveka
MD5

ed814f3e21f6d9331302a8453d68864c
SHA1

ce215654d031d4a159c52734f0668b40f86b9281
SHA256

0ef9c7adc077063d0f4b6f24f36dc01be7a843426e82a7e3e9fb3684c6354d4c
SHA512

0cef5e30d15d6f19359a694086f322af13985052e2011d7726c171b10a11bf926a535150ca1174ef10d8183e6cb87bff425eb5a26f02710ef0e1ba4212592643
SSDEEP

1536:SP7ls0KSr0EnbCocw9RN0FmSqZpAxQKMGfyY0duV9jojTIvjr:SD205nQocFhqZTGH0d69jc0v

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  0ef9c7adc077063d0f4b6f24f36dc01be7a843426e82a7e3e9fb3684c6354d4c
- Size
  
  96KB
- MD5
  
  ed814f3e21f6d9331302a8453d68864c
- SHA1
  
  ce215654d031d4a159c52734f0668b40f86b9281
- SHA256
  
  0ef9c7adc077063d0f4b6f24f36dc01be7a843426e82a7e3e9fb3684c6354d4c
- SHA512
  
  0cef5e30d15d6f19359a694086f322af13985052e2011d7726c171b10a11bf926a535150ca1174ef10d8183e6cb87bff425eb5a26f02710ef0e1ba4212592643
- SSDEEP
  
  1536:SP7ls0KSr0EnbCocw9RN0FmSqZpAxQKMGfyY0duV9jojTIvjr:SD205nQocFhqZTGH0d69jc0v
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence