50428d7f1a7e37ba9620337630cd8da11132cec32868a8d8af31cd84a8392051 | Triage

Sharing

General

Target

50428d7f1a7e37ba9620337630cd8da11132cec32868a8d8af31cd84a8392051
Size

123KB
Sample

240909-1cyzjatarg
MD5

09a9acb52451b7222b475ccb29b559e4
SHA1

61784b71435905615d1e0e85742193be6d27b56d
SHA256

50428d7f1a7e37ba9620337630cd8da11132cec32868a8d8af31cd84a8392051
SHA512

7de11635e0b9a888ec5aeeb3c0891a3efe2eff4c6b4a7f76208edc03565e2fb5cb262959448a3bec0c3a6ca0cf8884c600b1deaea7ec624b931ef51ea723e1d1
SSDEEP

1536:/iHQSinmxLxd2xLq7106AlYIG5/jp34FO5ZRYSw1mir8CAjXoiDEuGg0opGCR98:/sXxltI+Lp1ZRYSa9rR85DEn5k7r8

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  50428d7f1a7e37ba9620337630cd8da11132cec32868a8d8af31cd84a8392051
- Size
  
  123KB
- MD5
  
  09a9acb52451b7222b475ccb29b559e4
- SHA1
  
  61784b71435905615d1e0e85742193be6d27b56d
- SHA256
  
  50428d7f1a7e37ba9620337630cd8da11132cec32868a8d8af31cd84a8392051
- SHA512
  
  7de11635e0b9a888ec5aeeb3c0891a3efe2eff4c6b4a7f76208edc03565e2fb5cb262959448a3bec0c3a6ca0cf8884c600b1deaea7ec624b931ef51ea723e1d1
- SSDEEP
  
  1536:/iHQSinmxLxd2xLq7106AlYIG5/jp34FO5ZRYSw1mir8CAjXoiDEuGg0opGCR98:/sXxltI+Lp1ZRYSa9rR85DEn5k7r8
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence