f1d4a4cac85f9381b8db6f2225efa0f3c458d83baa686f63e0b6f9a25f26133b | Triage

Sharing

General

Target

d6799714165248002529a99db12ac990N
Size

64KB
Sample

240908-hh44matgqa
MD5

d6799714165248002529a99db12ac990
SHA1

8dd5b10d2973d4600e1393fcdbdf5565f293f2dd
SHA256

f1d4a4cac85f9381b8db6f2225efa0f3c458d83baa686f63e0b6f9a25f26133b
SHA512

5d25a28f35c2d0adca68c248677d41e5121d63090a6975bb5af00f1ccac909dc278241f2332db7ac9b5185423da4a0f10c6aa5be89ac45ab8a6a48b113e1532f
SSDEEP

1536:32pF8aBS5NvT9tfQyRD694oyJ+y9PAgNtn:GL8aw5p9t42yyJNAgL

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d6799714165248002529a99db12ac990N
- Size
  
  64KB
- MD5
  
  d6799714165248002529a99db12ac990
- SHA1
  
  8dd5b10d2973d4600e1393fcdbdf5565f293f2dd
- SHA256
  
  f1d4a4cac85f9381b8db6f2225efa0f3c458d83baa686f63e0b6f9a25f26133b
- SHA512
  
  5d25a28f35c2d0adca68c248677d41e5121d63090a6975bb5af00f1ccac909dc278241f2332db7ac9b5185423da4a0f10c6aa5be89ac45ab8a6a48b113e1532f
- SSDEEP
  
  1536:32pF8aBS5NvT9tfQyRD694oyJ+y9PAgNtn:GL8aw5p9t42yyJNAgL
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence