14664801867256fb460fdae41ee9117d53448d20bd309a3586936b7021ab39fb | Triage

Sharing

General

Target

28a0bb1efde5204ff2892d9ee4153dc0N
Size

97KB
Sample

240912-alrzga1dpq
MD5

28a0bb1efde5204ff2892d9ee4153dc0
SHA1

2ed2ea491a2dda2b67bf4d9c669c123b5ca553b2
SHA256

14664801867256fb460fdae41ee9117d53448d20bd309a3586936b7021ab39fb
SHA512

7adeecc08171ddbc2d6a391749aad065241efc366b43d63c512e4825c26b9e04e745232977a72fe5a85f2cc4f2e4fd4776481caefe005d6823d8540c9ade3b69
SSDEEP

1536:As0PkacjJCBCY3gyGDlpbpvpY2JdNpXHkxmWHyvJXeYZ6:5ayUI7pJJJF3kxmWHSJXeK6

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  28a0bb1efde5204ff2892d9ee4153dc0N
- Size
  
  97KB
- MD5
  
  28a0bb1efde5204ff2892d9ee4153dc0
- SHA1
  
  2ed2ea491a2dda2b67bf4d9c669c123b5ca553b2
- SHA256
  
  14664801867256fb460fdae41ee9117d53448d20bd309a3586936b7021ab39fb
- SHA512
  
  7adeecc08171ddbc2d6a391749aad065241efc366b43d63c512e4825c26b9e04e745232977a72fe5a85f2cc4f2e4fd4776481caefe005d6823d8540c9ade3b69
- SSDEEP
  
  1536:As0PkacjJCBCY3gyGDlpbpvpY2JdNpXHkxmWHyvJXeYZ6:5ayUI7pJJJF3kxmWHSJXeK6
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence