1ad81a55ce5d4c37c8c290cff453b3e2715208579aff528c60c6a580fb77c1ff | Triage

Sharing

General

Target

e7f6f3a39f3aab802704add7c4f85a20N
Size

582KB
Sample

240908-g5mx7a1ejm
MD5

e7f6f3a39f3aab802704add7c4f85a20
SHA1

e747752229986e55bdea70dd207f30a19540db24
SHA256

1ad81a55ce5d4c37c8c290cff453b3e2715208579aff528c60c6a580fb77c1ff
SHA512

beccbd967980f8ba444824c7e82f064f202b06623d9224585950ad4d0716aadc989917639f3dbc6404d9220a5744f0823db065eba2209ed49dd405c186937d42
SSDEEP

6144:F5hueYIQHZ4ii7+1bRtPcCrc6egLCCGP7+1bRtPcCrhCRkR/+MG7+1bRtPcCrhr:fXpQHZ49YNrAgmCAYNrekcPYNrB

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e7f6f3a39f3aab802704add7c4f85a20N
- Size
  
  582KB
- MD5
  
  e7f6f3a39f3aab802704add7c4f85a20
- SHA1
  
  e747752229986e55bdea70dd207f30a19540db24
- SHA256
  
  1ad81a55ce5d4c37c8c290cff453b3e2715208579aff528c60c6a580fb77c1ff
- SHA512
  
  beccbd967980f8ba444824c7e82f064f202b06623d9224585950ad4d0716aadc989917639f3dbc6404d9220a5744f0823db065eba2209ed49dd405c186937d42
- SSDEEP
  
  6144:F5hueYIQHZ4ii7+1bRtPcCrc6egLCCGP7+1bRtPcCrhCRkR/+MG7+1bRtPcCrhr:fXpQHZ49YNrAgmCAYNrekcPYNrB
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence