71ac172e416c67cfc10b3a40e9b9f96509cd19ce85d8f1b1ac7c4ee69aea35a6 | Triage

Sharing

General

Target

ca098be7755963f63d014c0a60c63b30N
Size

113KB
Sample

240908-nr6lpstfjk
MD5

ca098be7755963f63d014c0a60c63b30
SHA1

349490a4a64c5bc8e5660f46abf5ebd215b5ebdf
SHA256

71ac172e416c67cfc10b3a40e9b9f96509cd19ce85d8f1b1ac7c4ee69aea35a6
SHA512

b968f0f8255d424460572467fa8bee3e49ad4c38f97c274547772e3f0a08eca50298b68cb3b9e8c2963fbabb0ab8c797fac801a936bcee27b1d24dd10719cdf3
SSDEEP

1536:tZPJCW4SJmIfWAxFOGiovS1O617DWkZFfScD7SzCbHWrAW8wTWiliX:XojqfWjovS1OuGkZFfFSebHWrH8wTW0

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ca098be7755963f63d014c0a60c63b30N
- Size
  
  113KB
- MD5
  
  ca098be7755963f63d014c0a60c63b30
- SHA1
  
  349490a4a64c5bc8e5660f46abf5ebd215b5ebdf
- SHA256
  
  71ac172e416c67cfc10b3a40e9b9f96509cd19ce85d8f1b1ac7c4ee69aea35a6
- SHA512
  
  b968f0f8255d424460572467fa8bee3e49ad4c38f97c274547772e3f0a08eca50298b68cb3b9e8c2963fbabb0ab8c797fac801a936bcee27b1d24dd10719cdf3
- SSDEEP
  
  1536:tZPJCW4SJmIfWAxFOGiovS1O617DWkZFfScD7SzCbHWrAW8wTWiliX:XojqfWjovS1OuGkZFfFSebHWrH8wTW0
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence