d7c7b7ff1fa2ea24f3ab328d72e7c1e1150713c336784958ce6b58cdbdd515af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a1400541667a90e5668bcd8113d2a910N
Size

76KB
Sample

240908-qz1rja1flc
MD5

a1400541667a90e5668bcd8113d2a910
SHA1

1aee7545df9a8157c7568c9d47780eeeae86c3bb
SHA256

d7c7b7ff1fa2ea24f3ab328d72e7c1e1150713c336784958ce6b58cdbdd515af
SHA512

c8c2c8582ce4bada94bdb27cb6c6009778485ed57fe12693c64e38362515f51044ffefbd4e582aac1407f4a1561e7135ac43c7e4a24b533a9893d6919a6d4257
SSDEEP

1536:KVTvl7d3+WL7c6e4cN+7K1J9N50LgJR2Nyv/nZLHoc8HioQV+/eCeyvCQ:uvlb5o+m19SwsOxoc8Hrk+

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a1400541667a90e5668bcd8113d2a910N
- Size
  
  76KB
- MD5
  
  a1400541667a90e5668bcd8113d2a910
- SHA1
  
  1aee7545df9a8157c7568c9d47780eeeae86c3bb
- SHA256
  
  d7c7b7ff1fa2ea24f3ab328d72e7c1e1150713c336784958ce6b58cdbdd515af
- SHA512
  
  c8c2c8582ce4bada94bdb27cb6c6009778485ed57fe12693c64e38362515f51044ffefbd4e582aac1407f4a1561e7135ac43c7e4a24b533a9893d6919a6d4257
- SSDEEP
  
  1536:KVTvl7d3+WL7c6e4cN+7K1J9N50LgJR2Nyv/nZLHoc8HioQV+/eCeyvCQ:uvlb5o+m19SwsOxoc8Hrk+
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence