4ed04da51735ffa19834d639f364200ff4d9c08e30fe7891860a676876a7e874 | Triage

Sharing

General

Target

4ed04da51735ffa19834d639f364200ff4d9c08e30fe7891860a676876a7e874
Size

96KB
Sample

240912-2d9yvsycjq
MD5

9c9e41ddb024581ac5479c2382d2c5d3
SHA1

20fea663cc2a3a01774dcfb04425e61264abd9f3
SHA256

4ed04da51735ffa19834d639f364200ff4d9c08e30fe7891860a676876a7e874
SHA512

edde2612bd2e54861f1504b979292d081b36ba72dd77eecbd0f455dad8c05b7048cbca35687a697b99a092b15269180d44dec6886cda60a7fccad13cd7916041
SSDEEP

1536:V2ZH7G3xuyB2GxJA0ADnU5/dESXm6h8T9i6AcADG7vT2bPC1/ko+/BOmHCMy0Qir:V2ZHyxuVGxP5PN26hqA3wK0ko+5OmHCe

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  4ed04da51735ffa19834d639f364200ff4d9c08e30fe7891860a676876a7e874
- Size
  
  96KB
- MD5
  
  9c9e41ddb024581ac5479c2382d2c5d3
- SHA1
  
  20fea663cc2a3a01774dcfb04425e61264abd9f3
- SHA256
  
  4ed04da51735ffa19834d639f364200ff4d9c08e30fe7891860a676876a7e874
- SHA512
  
  edde2612bd2e54861f1504b979292d081b36ba72dd77eecbd0f455dad8c05b7048cbca35687a697b99a092b15269180d44dec6886cda60a7fccad13cd7916041
- SSDEEP
  
  1536:V2ZH7G3xuyB2GxJA0ADnU5/dESXm6h8T9i6AcADG7vT2bPC1/ko+/BOmHCMy0Qir:V2ZHyxuVGxP5PN26hqA3wK0ko+5OmHCe
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence