9eac0cebf28e3965a1adf76c4b8b5103b878b15c4debf44eb04b665852298918 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9eac0cebf28e3965a1adf76c4b8b5103b878b15c4debf44eb04b665852298918
Size

84KB
Sample

240908-axpngstgrn
MD5

a8ae63348e6daf42cb4ec526b6086cc9
SHA1

db5263e1884b80cf9d45ca5a9188c990ed644e0c
SHA256

9eac0cebf28e3965a1adf76c4b8b5103b878b15c4debf44eb04b665852298918
SHA512

906649eda0ca6378306f5ea2369f81e6b8180ebffc246947dc0f7ddbe4258d6420a84212a42770eaf58a57e1062b40679c486b2694976df1193e1c932b29b303
SSDEEP

1536:krJXWQWtuNfrH8ANZLvfPDyH6n8dEelLYR7xeGSmUmmmmmmmmmmmmmmdGnZ:krjWtOD/3PDyH6n8djlLYR7xr3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  9eac0cebf28e3965a1adf76c4b8b5103b878b15c4debf44eb04b665852298918
- Size
  
  84KB
- MD5
  
  a8ae63348e6daf42cb4ec526b6086cc9
- SHA1
  
  db5263e1884b80cf9d45ca5a9188c990ed644e0c
- SHA256
  
  9eac0cebf28e3965a1adf76c4b8b5103b878b15c4debf44eb04b665852298918
- SHA512
  
  906649eda0ca6378306f5ea2369f81e6b8180ebffc246947dc0f7ddbe4258d6420a84212a42770eaf58a57e1062b40679c486b2694976df1193e1c932b29b303
- SSDEEP
  
  1536:krJXWQWtuNfrH8ANZLvfPDyH6n8dEelLYR7xeGSmUmmmmmmmmmmmmmmdGnZ:krjWtOD/3PDyH6n8djlLYR7xr3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence