01e9eb1948721d8f0487f42c2be152690626e41006f04320216cf41bf98e1656 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8881c2ba7ccba835beab1dc5eb7f93f0N
Size

80KB
Sample

240911-m8l3yswgrl
MD5

8881c2ba7ccba835beab1dc5eb7f93f0
SHA1

1506b230290a92bbcd992984ea96f3878d28f1ca
SHA256

01e9eb1948721d8f0487f42c2be152690626e41006f04320216cf41bf98e1656
SHA512

540b65b39c6c7f44d86828f389f3dbd0ef29088a71e07b3e65b0fbd5fe7324a092d4294e7d316f5dffa32204e6d30f03a46ac2f7af9f0a742a1934a211b987b1
SSDEEP

1536:ymNgqTY5TllEBlP7pR5l0rx9Mipy1v5DVx18ORTRQjR/RgpMujAYC+O+Y:fNgqSfgP5l0oipy15Bx1bejVqLAYC+On

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8881c2ba7ccba835beab1dc5eb7f93f0N
- Size
  
  80KB
- MD5
  
  8881c2ba7ccba835beab1dc5eb7f93f0
- SHA1
  
  1506b230290a92bbcd992984ea96f3878d28f1ca
- SHA256
  
  01e9eb1948721d8f0487f42c2be152690626e41006f04320216cf41bf98e1656
- SHA512
  
  540b65b39c6c7f44d86828f389f3dbd0ef29088a71e07b3e65b0fbd5fe7324a092d4294e7d316f5dffa32204e6d30f03a46ac2f7af9f0a742a1934a211b987b1
- SSDEEP
  
  1536:ymNgqTY5TllEBlP7pR5l0rx9Mipy1v5DVx18ORTRQjR/RgpMujAYC+O+Y:fNgqSfgP5l0oipy15Bx1bejVqLAYC+On
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence