4e647d86f3e781c4568403509ce8cdb154596395782b7ca97d981d792dc24959 | Triage

Sharing

General

Target

7c9a49bfa6ca54aadf2e9a2a250ae960N
Size

128KB
Sample

240909-spzgtsvdnp
MD5

7c9a49bfa6ca54aadf2e9a2a250ae960
SHA1

5bc7f41302d7b80f8347ca62ff53d55cb0611adb
SHA256

4e647d86f3e781c4568403509ce8cdb154596395782b7ca97d981d792dc24959
SHA512

cdd59c57eebdc5b0e35b737e081a789ff49dd62fd971d96544059476e62eebf5351c0f5ee9f4e20b7b70b0e9bfc5c47c1c69a79d56cb64c2b9bd324d38f6c657
SSDEEP

1536:wnumUv+IpBd5m/cSFxH+xJw9JnRdhLgkRQDEwRfRa9HprmRfRJCLIXG:wnetpBd5m0SDowDR/0keD15wkpHxG

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7c9a49bfa6ca54aadf2e9a2a250ae960N
- Size
  
  128KB
- MD5
  
  7c9a49bfa6ca54aadf2e9a2a250ae960
- SHA1
  
  5bc7f41302d7b80f8347ca62ff53d55cb0611adb
- SHA256
  
  4e647d86f3e781c4568403509ce8cdb154596395782b7ca97d981d792dc24959
- SHA512
  
  cdd59c57eebdc5b0e35b737e081a789ff49dd62fd971d96544059476e62eebf5351c0f5ee9f4e20b7b70b0e9bfc5c47c1c69a79d56cb64c2b9bd324d38f6c657
- SSDEEP
  
  1536:wnumUv+IpBd5m/cSFxH+xJw9JnRdhLgkRQDEwRfRa9HprmRfRJCLIXG:wnetpBd5m0SDowDR/0keD15wkpHxG
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence