18d5aa9b2b11d6a529163e00c16ea08fecd564c866c6cea3889acd49bb771eb8 | Triage

Sharing

General

Target

18d5aa9b2b11d6a529163e00c16ea08fecd564c866c6cea3889acd49bb771eb8
Size

94KB
Sample

240908-xzyqha1gqq
MD5

8966174ea3af9f82bd6843f52ea60aa4
SHA1

6c2315f4d8f4081243afcb763abbbe09bac145d9
SHA256

18d5aa9b2b11d6a529163e00c16ea08fecd564c866c6cea3889acd49bb771eb8
SHA512

6789d3869729efc353a1a7a8a9b20ac2a1edc4e90e5b62055af3e676db405c795a09bd8e2880376e08b09c538d6bb7f5b19fe66e3b8180aabd4f62110426135d
SSDEEP

1536:Iu0gQhHCl5kyiNoSKkgB2iXVz8IJ7XCxGhfV7BR9L4DT2EnINs:Iu1Qhq5khpXbiXVNJcy96+ob

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  18d5aa9b2b11d6a529163e00c16ea08fecd564c866c6cea3889acd49bb771eb8
- Size
  
  94KB
- MD5
  
  8966174ea3af9f82bd6843f52ea60aa4
- SHA1
  
  6c2315f4d8f4081243afcb763abbbe09bac145d9
- SHA256
  
  18d5aa9b2b11d6a529163e00c16ea08fecd564c866c6cea3889acd49bb771eb8
- SHA512
  
  6789d3869729efc353a1a7a8a9b20ac2a1edc4e90e5b62055af3e676db405c795a09bd8e2880376e08b09c538d6bb7f5b19fe66e3b8180aabd4f62110426135d
- SSDEEP
  
  1536:Iu0gQhHCl5kyiNoSKkgB2iXVz8IJ7XCxGhfV7BR9L4DT2EnINs:Iu1Qhq5khpXbiXVNJcy96+ob
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence