ba4b7d0e048af37edfd84ad0903cb899e23770e62e30ab5191198a2fd5096e51 | Triage

Sharing

General

Target

e3a60f2aaa83f72ea54bd505a69c9340N
Size

226KB
Sample

240911-zpgqcasdkk
MD5

e3a60f2aaa83f72ea54bd505a69c9340
SHA1

70bdb2be8f477c45091eb4eb776f724cc0db8795
SHA256

ba4b7d0e048af37edfd84ad0903cb899e23770e62e30ab5191198a2fd5096e51
SHA512

de8b4421f4eeb291eb346d63c4b9557b17014dbbb9a2715ffedf837893095592c6bc156e9da12f63557b1fe5f2120123ad0c96737b00239d4d726af074209e69
SSDEEP

3072:R/dDCTo9d8sABFC6DwWDKcWmjRvDKcpDKcWmjRrzNtQtjDKcWmjRrzNtb:tdDCcP8sABFC6k3xEtQtsEtb

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e3a60f2aaa83f72ea54bd505a69c9340N
- Size
  
  226KB
- MD5
  
  e3a60f2aaa83f72ea54bd505a69c9340
- SHA1
  
  70bdb2be8f477c45091eb4eb776f724cc0db8795
- SHA256
  
  ba4b7d0e048af37edfd84ad0903cb899e23770e62e30ab5191198a2fd5096e51
- SHA512
  
  de8b4421f4eeb291eb346d63c4b9557b17014dbbb9a2715ffedf837893095592c6bc156e9da12f63557b1fe5f2120123ad0c96737b00239d4d726af074209e69
- SSDEEP
  
  3072:R/dDCTo9d8sABFC6DwWDKcWmjRvDKcpDKcWmjRrzNtQtjDKcWmjRrzNtb:tdDCcP8sABFC6k3xEtQtsEtb
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence