ac83c0bd64eeb2e63e430a54fa3adc81be577dea632c54d884ec3fa22bb1e4e8 | Triage

Sharing

General

Target

81444e85ace5c0ee917a958779255fb0N
Size

379KB
Sample

240912-g9h5sswblf
MD5

81444e85ace5c0ee917a958779255fb0
SHA1

2265b98e140a9089cb06a45885cf7659799a9f35
SHA256

ac83c0bd64eeb2e63e430a54fa3adc81be577dea632c54d884ec3fa22bb1e4e8
SHA512

8babad64da4a32d7bf543f84d93ea3fcd7fc74b090fd3c15474720d8d18ff1f1b72bca7378deb52b55bfe540dc0c18199db86309091e739d829ebd16d8f989bb
SSDEEP

6144:1qSuPCVUH3ckli7O/0xLxli7O//yb1c3ccU0S6GyTgfiEkrE:1Z4CiHP6vxr6lGHaXyTg6EkrE

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  81444e85ace5c0ee917a958779255fb0N
- Size
  
  379KB
- MD5
  
  81444e85ace5c0ee917a958779255fb0
- SHA1
  
  2265b98e140a9089cb06a45885cf7659799a9f35
- SHA256
  
  ac83c0bd64eeb2e63e430a54fa3adc81be577dea632c54d884ec3fa22bb1e4e8
- SHA512
  
  8babad64da4a32d7bf543f84d93ea3fcd7fc74b090fd3c15474720d8d18ff1f1b72bca7378deb52b55bfe540dc0c18199db86309091e739d829ebd16d8f989bb
- SSDEEP
  
  6144:1qSuPCVUH3ckli7O/0xLxli7O//yb1c3ccU0S6GyTgfiEkrE:1Z4CiHP6vxr6lGHaXyTg6EkrE
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence