82f991f758637262fdd2974f6e62b8fcfbdeb5a0a580b15dba5b77f9bb511e41 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3192a804caa369d0e392e425218b84e0N
Size

219KB
Sample

240908-yanpnsvcka
MD5

3192a804caa369d0e392e425218b84e0
SHA1

a76f49a0addf6681660162b7a15620cc27340b63
SHA256

82f991f758637262fdd2974f6e62b8fcfbdeb5a0a580b15dba5b77f9bb511e41
SHA512

bf09bf91c7cc5ca03d23769365a91e02f2de6d8a9a7936ccbfd2eb7103d2fc56f65587ac0ddf4aeef5c2a7496a25f7848fb1c1db59483ab3223b08c430ecec85
SSDEEP

3072:Kx4HdUBJPzwuZkO0aDb/IBPCOQvU6z314EXrjvwSfYrwBt:KxYdUBRzDOO0aDD4PCxdXXwSfYrwB

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3192a804caa369d0e392e425218b84e0N
- Size
  
  219KB
- MD5
  
  3192a804caa369d0e392e425218b84e0
- SHA1
  
  a76f49a0addf6681660162b7a15620cc27340b63
- SHA256
  
  82f991f758637262fdd2974f6e62b8fcfbdeb5a0a580b15dba5b77f9bb511e41
- SHA512
  
  bf09bf91c7cc5ca03d23769365a91e02f2de6d8a9a7936ccbfd2eb7103d2fc56f65587ac0ddf4aeef5c2a7496a25f7848fb1c1db59483ab3223b08c430ecec85
- SSDEEP
  
  3072:Kx4HdUBJPzwuZkO0aDb/IBPCOQvU6z314EXrjvwSfYrwBt:KxYdUBRzDOO0aDD4PCxdXXwSfYrwB
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence