4fcc13a53ed2557e92be0b50902467e8e264b30e8c977893122d93013e15ffd5 | Triage

Sharing

General

Target

df5a69c03a1da386f6eb24aac80c4f20N
Size

81KB
Sample

240912-ldvwya1aqf
MD5

df5a69c03a1da386f6eb24aac80c4f20
SHA1

c562a9210001669ee3b14ed0dcf323dbfe2c86f8
SHA256

4fcc13a53ed2557e92be0b50902467e8e264b30e8c977893122d93013e15ffd5
SHA512

2dffa0a45cfeba5a87c4234e23b53bc03aeaad31bb60546d2bad08fddd3c78a0e3233fb72dfea8069294c5e03cb34572961c0b54e7f9a936361e0cdbd0a1ec39
SSDEEP

1536:nvu+AYMQk84iBCZFDFaavNMATZZDuJ7m4LO++/+1m6KadhYxU33HX0L:Lhz4SQRxiAzw/LrCimBaH8UH30L

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  df5a69c03a1da386f6eb24aac80c4f20N
- Size
  
  81KB
- MD5
  
  df5a69c03a1da386f6eb24aac80c4f20
- SHA1
  
  c562a9210001669ee3b14ed0dcf323dbfe2c86f8
- SHA256
  
  4fcc13a53ed2557e92be0b50902467e8e264b30e8c977893122d93013e15ffd5
- SHA512
  
  2dffa0a45cfeba5a87c4234e23b53bc03aeaad31bb60546d2bad08fddd3c78a0e3233fb72dfea8069294c5e03cb34572961c0b54e7f9a936361e0cdbd0a1ec39
- SSDEEP
  
  1536:nvu+AYMQk84iBCZFDFaavNMATZZDuJ7m4LO++/+1m6KadhYxU33HX0L:Lhz4SQRxiAzw/LrCimBaH8UH30L
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence