544faca9c2bf9aa59bfee7acf6a3ab3f1fa3b9f1d55860278ad6439703b8c30c | Triage

Sharing

General

Target

544faca9c2bf9aa59bfee7acf6a3ab3f1fa3b9f1d55860278ad6439703b8c30c
Size

57KB
Sample

240907-1lnj6axamm
MD5

466242be72c3cb35d3733162e6effb6e
SHA1

6d0804b665f7439d2d8fe854ab405be4b9ba0b56
SHA256

544faca9c2bf9aa59bfee7acf6a3ab3f1fa3b9f1d55860278ad6439703b8c30c
SHA512

972e7b4418fe413de9e4dcae50929874bd375e9c53af51e1c09d4fbb596f53ed2763ffac83188fa12becac377075f01960d22762ea46dcc5a30966618c9fa302
SSDEEP

768:k/8nElB7IqkZkq1MZLX3DcuXsI/MPLDIugvttiHI+Q3xQlDNL/1H54Xdnhg:koELp2CXzcI/MFmttiRjbZQ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  544faca9c2bf9aa59bfee7acf6a3ab3f1fa3b9f1d55860278ad6439703b8c30c
- Size
  
  57KB
- MD5
  
  466242be72c3cb35d3733162e6effb6e
- SHA1
  
  6d0804b665f7439d2d8fe854ab405be4b9ba0b56
- SHA256
  
  544faca9c2bf9aa59bfee7acf6a3ab3f1fa3b9f1d55860278ad6439703b8c30c
- SHA512
  
  972e7b4418fe413de9e4dcae50929874bd375e9c53af51e1c09d4fbb596f53ed2763ffac83188fa12becac377075f01960d22762ea46dcc5a30966618c9fa302
- SSDEEP
  
  768:k/8nElB7IqkZkq1MZLX3DcuXsI/MPLDIugvttiHI+Q3xQlDNL/1H54Xdnhg:koELp2CXzcI/MFmttiRjbZQ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence