a7b516204638570546299e5de0ce1e04ca3b9258955b7bb3e03209cc29ecc41d | Triage

Sharing

General

Target

a7b516204638570546299e5de0ce1e04ca3b9258955b7bb3e03209cc29ecc41d
Size

1.9MB
Sample

240904-b7v4pasgkr
MD5

873eb298d9966267aba4c4c4dfce8453
SHA1

67d467621fa6ffc2f6fcd55ac2da15bf714e2e92
SHA256

a7b516204638570546299e5de0ce1e04ca3b9258955b7bb3e03209cc29ecc41d
SHA512

05258dafebfc516a678bad3b23467bd415f1701251f29bc240a99216315ac61d297e86a2b7b964fc15ac2eb61625d17640a6439eff5670d34fc91034bf4293a9
SSDEEP

24576:9NIVyeNIVy2jUpsQUNIVyeNIVy2jUMB1NIVyeNIVy2jUpsQUNIVyeNIVy2jUO:4yjcbLyjPqyjcbLyjH

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a7b516204638570546299e5de0ce1e04ca3b9258955b7bb3e03209cc29ecc41d
- Size
  
  1.9MB
- MD5
  
  873eb298d9966267aba4c4c4dfce8453
- SHA1
  
  67d467621fa6ffc2f6fcd55ac2da15bf714e2e92
- SHA256
  
  a7b516204638570546299e5de0ce1e04ca3b9258955b7bb3e03209cc29ecc41d
- SHA512
  
  05258dafebfc516a678bad3b23467bd415f1701251f29bc240a99216315ac61d297e86a2b7b964fc15ac2eb61625d17640a6439eff5670d34fc91034bf4293a9
- SSDEEP
  
  24576:9NIVyeNIVy2jUpsQUNIVyeNIVy2jUMB1NIVyeNIVy2jUpsQUNIVyeNIVy2jUO:4yjcbLyjPqyjcbLyjH
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence