6441ff88501e28387f769820b57f0b489533a54b0332a4c49ade39a05d5e804a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c322f4184e285c5639e8d17398a9d190N
Size

401KB
Sample

240911-v43txaterc
MD5

c322f4184e285c5639e8d17398a9d190
SHA1

dd03f91a394d85a074c2800d719d384f33a4c14f
SHA256

6441ff88501e28387f769820b57f0b489533a54b0332a4c49ade39a05d5e804a
SHA512

f2a2c3883e2aaba6bb938b2becbd58de79575ae18d9b32699779c0500582d7674b5ef05fddd602abd5c677285542ea3500f97a4b196c6cb4a09d3da8c7caa7a1
SSDEEP

6144:uEbG+10f4CLx/1DVs7GWozndpui6yYPaIGckfru5xyDpui6yYPaIGckSU05836P8:0vTndpV6yYP4rbpV6yYPg058KrY

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c322f4184e285c5639e8d17398a9d190N
- Size
  
  401KB
- MD5
  
  c322f4184e285c5639e8d17398a9d190
- SHA1
  
  dd03f91a394d85a074c2800d719d384f33a4c14f
- SHA256
  
  6441ff88501e28387f769820b57f0b489533a54b0332a4c49ade39a05d5e804a
- SHA512
  
  f2a2c3883e2aaba6bb938b2becbd58de79575ae18d9b32699779c0500582d7674b5ef05fddd602abd5c677285542ea3500f97a4b196c6cb4a09d3da8c7caa7a1
- SSDEEP
  
  6144:uEbG+10f4CLx/1DVs7GWozndpui6yYPaIGckfru5xyDpui6yYPaIGckSU05836P8:0vTndpV6yYP4rbpV6yYPg058KrY
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence