beddd3d580ccf34672dd9989f04d2dfe79715ec2c62d4dd9354a25023e1f1217 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

50f0170fbafd76c16f80d3d3955ab690N
Size

304KB
Sample

240909-3plabaxhqd
MD5

50f0170fbafd76c16f80d3d3955ab690
SHA1

16a8486f50f184d587c2dd08f57b31eb184a27d4
SHA256

beddd3d580ccf34672dd9989f04d2dfe79715ec2c62d4dd9354a25023e1f1217
SHA512

7ff0751c55b22d6017c4d522c702e5c6d70c555eeaca6150385735d112fa28c75352eb9023084ce2cf105afa366c01001b1d9296f02cfc9a464a354fb425bada
SSDEEP

6144:1RkoZZLR2WHozEcO7JfnrFVoXJtpNr1RgAaa6FlFlcOuLr2/24qXPAbgPBFpYrFR:smHLJfnYdsWfna

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  50f0170fbafd76c16f80d3d3955ab690N
- Size
  
  304KB
- MD5
  
  50f0170fbafd76c16f80d3d3955ab690
- SHA1
  
  16a8486f50f184d587c2dd08f57b31eb184a27d4
- SHA256
  
  beddd3d580ccf34672dd9989f04d2dfe79715ec2c62d4dd9354a25023e1f1217
- SHA512
  
  7ff0751c55b22d6017c4d522c702e5c6d70c555eeaca6150385735d112fa28c75352eb9023084ce2cf105afa366c01001b1d9296f02cfc9a464a354fb425bada
- SSDEEP
  
  6144:1RkoZZLR2WHozEcO7JfnrFVoXJtpNr1RgAaa6FlFlcOuLr2/24qXPAbgPBFpYrFR:smHLJfnYdsWfna
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence