415d89d22794c89a336d34be2a6cac8e6f9866154f1ac4bbcab4eda64839d951 | Triage

Sharing

General

Target

27c6a068a8518a016ee7eeec9343e440N
Size

94KB
Sample

240912-k5y71azhka
MD5

27c6a068a8518a016ee7eeec9343e440
SHA1

99127fa9fd7c10e6751f5bed710f8e07c36c4b7d
SHA256

415d89d22794c89a336d34be2a6cac8e6f9866154f1ac4bbcab4eda64839d951
SHA512

7a766bbbe170843d84a159b381cb807d3fdb05969f9d4bdfd09e37e2cb9d7505b166b0367226b500e846003e2d670a1ec5b15451fcc396f56f892d2e302e5c36
SSDEEP

1536:tA2Xk79GNu3hzge732tJLUtm8UDpxULavjux17BR9L4DT2EnINs:tAl0u9d2XUtmnpxK36+ob

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  27c6a068a8518a016ee7eeec9343e440N
- Size
  
  94KB
- MD5
  
  27c6a068a8518a016ee7eeec9343e440
- SHA1
  
  99127fa9fd7c10e6751f5bed710f8e07c36c4b7d
- SHA256
  
  415d89d22794c89a336d34be2a6cac8e6f9866154f1ac4bbcab4eda64839d951
- SHA512
  
  7a766bbbe170843d84a159b381cb807d3fdb05969f9d4bdfd09e37e2cb9d7505b166b0367226b500e846003e2d670a1ec5b15451fcc396f56f892d2e302e5c36
- SSDEEP
  
  1536:tA2Xk79GNu3hzge732tJLUtm8UDpxULavjux17BR9L4DT2EnINs:tAl0u9d2XUtmnpxK36+ob
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence