a09473e65a9304458bb0ad6d833374bb230773474b18ac3a045803fac9543b4c | Triage

Sharing

General

Target

a09473e65a9304458bb0ad6d833374bb230773474b18ac3a045803fac9543b4c
Size

67KB
Sample

240912-al4y2a1drj
MD5

c5dc56df1b2f6d5be3e60cadfb2da501
SHA1

1103dfc08a76919883042aa0b0ce2fa1e2247837
SHA256

a09473e65a9304458bb0ad6d833374bb230773474b18ac3a045803fac9543b4c
SHA512

ef859711dbec42e1cc236fddefcc651aa4e86e48b733a9266c34f018c900c8a8114771a3851ef57db0feb9ed81c818ad036fcea34ee23ed8ea64d206dae59c97
SSDEEP

1536:htek4eqYcS0vbGXeuFYFzvEQIyqounMFkQsJifTduD4oTxw:hQLpYzkbAZFYFRIyqou2kQsJibdMTxw

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a09473e65a9304458bb0ad6d833374bb230773474b18ac3a045803fac9543b4c
- Size
  
  67KB
- MD5
  
  c5dc56df1b2f6d5be3e60cadfb2da501
- SHA1
  
  1103dfc08a76919883042aa0b0ce2fa1e2247837
- SHA256
  
  a09473e65a9304458bb0ad6d833374bb230773474b18ac3a045803fac9543b4c
- SHA512
  
  ef859711dbec42e1cc236fddefcc651aa4e86e48b733a9266c34f018c900c8a8114771a3851ef57db0feb9ed81c818ad036fcea34ee23ed8ea64d206dae59c97
- SSDEEP
  
  1536:htek4eqYcS0vbGXeuFYFzvEQIyqounMFkQsJifTduD4oTxw:hQLpYzkbAZFYFRIyqou2kQsJibdMTxw
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence