501322cd08d41ad412ec0a5f49788a5b59cad8f66b4a61359fd483ae2fccc0dd | Triage

Sharing

General

Target

501322cd08d41ad412ec0a5f49788a5b59cad8f66b4a61359fd483ae2fccc0dd
Size

320KB
Sample

240907-1e3eqswfnp
MD5

484f0624326e02f5d2f2caf05ffed9db
SHA1

a75b39fcc8b36f2cb14086c206d9de218b4bb321
SHA256

501322cd08d41ad412ec0a5f49788a5b59cad8f66b4a61359fd483ae2fccc0dd
SHA512

35c3ac3ed1c1119717a7bf28eaec9e166013e258bde31fd5492126b80b4a7979543ef22cab5c640de847d20c89fe1d40a833f2c913c9c6a65cadda15572a75b2
SSDEEP

3072:m4dPSa8t0TC9rWfy8/41QUUZm8/41QrAoUZ4pWLB51jozFWLBggS2LHqN:m4dKa8t0IWFZgZ0Wd/OWdPS2L8

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  501322cd08d41ad412ec0a5f49788a5b59cad8f66b4a61359fd483ae2fccc0dd
- Size
  
  320KB
- MD5
  
  484f0624326e02f5d2f2caf05ffed9db
- SHA1
  
  a75b39fcc8b36f2cb14086c206d9de218b4bb321
- SHA256
  
  501322cd08d41ad412ec0a5f49788a5b59cad8f66b4a61359fd483ae2fccc0dd
- SHA512
  
  35c3ac3ed1c1119717a7bf28eaec9e166013e258bde31fd5492126b80b4a7979543ef22cab5c640de847d20c89fe1d40a833f2c913c9c6a65cadda15572a75b2
- SSDEEP
  
  3072:m4dPSa8t0TC9rWfy8/41QUUZm8/41QrAoUZ4pWLB51jozFWLBggS2LHqN:m4dKa8t0IWFZgZ0Wd/OWdPS2L8
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence