1f6e3918b2c5f712987817296cdae29449d0d7d0b09afa9bd0507ccde564b540 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

065469459d76ad4b5a8cef720017c160N
Size

276KB
Sample

240912-2srqtszbjl
MD5

065469459d76ad4b5a8cef720017c160
SHA1

bc7bf8b321aaf32a91fde0db1433b49d1db68e5b
SHA256

1f6e3918b2c5f712987817296cdae29449d0d7d0b09afa9bd0507ccde564b540
SHA512

48b33f08a042a2c34cd68c07baf6a36e288ad068525f2a22f31be6f5c0afb23ff7a0087379d2ef4d37bfd6c77474ddffc8456dcc0d7e3b8718f4d10a4f587ef4
SSDEEP

6144:6OkeygKV5Z1dWZHEFJ7aWN1rtMsQBOSGaF+:6OkQKVb2HEGWN1RMs1S7

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  065469459d76ad4b5a8cef720017c160N
- Size
  
  276KB
- MD5
  
  065469459d76ad4b5a8cef720017c160
- SHA1
  
  bc7bf8b321aaf32a91fde0db1433b49d1db68e5b
- SHA256
  
  1f6e3918b2c5f712987817296cdae29449d0d7d0b09afa9bd0507ccde564b540
- SHA512
  
  48b33f08a042a2c34cd68c07baf6a36e288ad068525f2a22f31be6f5c0afb23ff7a0087379d2ef4d37bfd6c77474ddffc8456dcc0d7e3b8718f4d10a4f587ef4
- SSDEEP
  
  6144:6OkeygKV5Z1dWZHEFJ7aWN1rtMsQBOSGaF+:6OkQKVb2HEGWN1RMs1S7
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence