2affab44ccde2d4b07cfc37f20931246b0fd73f6e79be8cfa424f5fd5a7517be | Triage

Sharing

General

Target

2affab44ccde2d4b07cfc37f20931246b0fd73f6e79be8cfa424f5fd5a7517be
Size

80KB
Sample

240911-yqhhlazhjd
MD5

7bd7e962713bf5edcf2f830eb2c19fa9
SHA1

c4f12fd6a89fba95e0c451fe3fca57be053fe216
SHA256

2affab44ccde2d4b07cfc37f20931246b0fd73f6e79be8cfa424f5fd5a7517be
SHA512

4e8374662b37bdcc6b6103f6c3d92d95f800938c3286e8af40cafb73d09f15699868cbdeef91a271e45f317f239b99b9f1ec766fd880da8740123ebd9880e965
SSDEEP

1536:S6rfXk3h1SHpVguD3FljiVxN+zL20gJi1i9:S6rf0x1SHpVguD1ljiVxgzL20WKS

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  2affab44ccde2d4b07cfc37f20931246b0fd73f6e79be8cfa424f5fd5a7517be
- Size
  
  80KB
- MD5
  
  7bd7e962713bf5edcf2f830eb2c19fa9
- SHA1
  
  c4f12fd6a89fba95e0c451fe3fca57be053fe216
- SHA256
  
  2affab44ccde2d4b07cfc37f20931246b0fd73f6e79be8cfa424f5fd5a7517be
- SHA512
  
  4e8374662b37bdcc6b6103f6c3d92d95f800938c3286e8af40cafb73d09f15699868cbdeef91a271e45f317f239b99b9f1ec766fd880da8740123ebd9880e965
- SSDEEP
  
  1536:S6rfXk3h1SHpVguD3FljiVxN+zL20gJi1i9:S6rf0x1SHpVguD1ljiVxgzL20WKS
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence