70e667ab3dd44dbe0246da07f7ae997d9971dbef150f5a2230844d63b5db4ec6 | Triage

Sharing

General

Target

70e667ab3dd44dbe0246da07f7ae997d9971dbef150f5a2230844d63b5db4ec6
Size

96KB
Sample

240912-3q7vpssalj
MD5

44dd3a28fc01f6f725e167db91c794d0
SHA1

99b7de5aebd48f578625b4bf811587581b409196
SHA256

70e667ab3dd44dbe0246da07f7ae997d9971dbef150f5a2230844d63b5db4ec6
SHA512

53e0e1913e7e510c4f7fa1cd4221642ca6004b6cadbee82a57677a06fb015e31540229ea7a2548bd033412ca7d624492ce28818d28a6cda8b8dc49897ec73e95
SSDEEP

1536:WqcMkilVSwUSgzWxrIbK0eauPRzz7PN+lnFeNH3RbRD/BOmCCMy0QiLiizHNQNdq:WS6wrgMEK0eauPRzzTsuH/D5OmCCMyEr

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  70e667ab3dd44dbe0246da07f7ae997d9971dbef150f5a2230844d63b5db4ec6
- Size
  
  96KB
- MD5
  
  44dd3a28fc01f6f725e167db91c794d0
- SHA1
  
  99b7de5aebd48f578625b4bf811587581b409196
- SHA256
  
  70e667ab3dd44dbe0246da07f7ae997d9971dbef150f5a2230844d63b5db4ec6
- SHA512
  
  53e0e1913e7e510c4f7fa1cd4221642ca6004b6cadbee82a57677a06fb015e31540229ea7a2548bd033412ca7d624492ce28818d28a6cda8b8dc49897ec73e95
- SSDEEP
  
  1536:WqcMkilVSwUSgzWxrIbK0eauPRzz7PN+lnFeNH3RbRD/BOmCCMy0QiLiizHNQNdq:WS6wrgMEK0eauPRzzTsuH/D5OmCCMyEr
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence