c2d72100aad147789f1c1324fb4470052a79387855df365125c2b37e23d8f38c | Triage

Sharing

General

Target

c2d72100aad147789f1c1324fb4470052a79387855df365125c2b37e23d8f38c
Size

77KB
Sample

240912-bw4lpatgrq
MD5

bf0435b36ec97c14794e2fcb43b66fbe
SHA1

85e48c7674a59bb89cfb862d4f8ee60ec1fc70ab
SHA256

c2d72100aad147789f1c1324fb4470052a79387855df365125c2b37e23d8f38c
SHA512

f9dc45847dc2815e8653ae45a46e09cb52c5b6b77ac5ca987ec26d6161a0fee3e5c2ff10d6124f38cc9326f692b866e1b00b940f64f851ba1e5630aeb703ad6f
SSDEEP

1536:MON/QIVy/Gx8a4K/1Dsxh3OsQB+v2Ltawfi+TjRC/:LQUyO67MB+0owf1TjY

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c2d72100aad147789f1c1324fb4470052a79387855df365125c2b37e23d8f38c
- Size
  
  77KB
- MD5
  
  bf0435b36ec97c14794e2fcb43b66fbe
- SHA1
  
  85e48c7674a59bb89cfb862d4f8ee60ec1fc70ab
- SHA256
  
  c2d72100aad147789f1c1324fb4470052a79387855df365125c2b37e23d8f38c
- SHA512
  
  f9dc45847dc2815e8653ae45a46e09cb52c5b6b77ac5ca987ec26d6161a0fee3e5c2ff10d6124f38cc9326f692b866e1b00b940f64f851ba1e5630aeb703ad6f
- SSDEEP
  
  1536:MON/QIVy/Gx8a4K/1Dsxh3OsQB+v2Ltawfi+TjRC/:LQUyO67MB+0owf1TjY
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence