2781ba15fc1aa8eba79f9a7691cf8117d374dda308d3618140253242289cc59a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c826d71984a58ba92a9634ed38499cd0N
Size

90KB
Sample

240912-qq5n5awhkd
MD5

c826d71984a58ba92a9634ed38499cd0
SHA1

ddc43599daba1f24ebac79ce5f38f92f915384b4
SHA256

2781ba15fc1aa8eba79f9a7691cf8117d374dda308d3618140253242289cc59a
SHA512

5baa49f0bb9af4b08708fc5fee7ed6f272c515ed80e58270a1aa69f428ea7ee2310187e3d3eb10039f93818b73e73cd0ada0cc8c98e029f14b429e0719612af9
SSDEEP

1536:fKNg++CnMLNF7vsWlQHJSOcH575ssY5RAFpxG5ku/Ub0VkVNK:SG++CnYB5lQpHIssYYxGmu/Ub0+NK

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c826d71984a58ba92a9634ed38499cd0N
- Size
  
  90KB
- MD5
  
  c826d71984a58ba92a9634ed38499cd0
- SHA1
  
  ddc43599daba1f24ebac79ce5f38f92f915384b4
- SHA256
  
  2781ba15fc1aa8eba79f9a7691cf8117d374dda308d3618140253242289cc59a
- SHA512
  
  5baa49f0bb9af4b08708fc5fee7ed6f272c515ed80e58270a1aa69f428ea7ee2310187e3d3eb10039f93818b73e73cd0ada0cc8c98e029f14b429e0719612af9
- SSDEEP
  
  1536:fKNg++CnMLNF7vsWlQHJSOcH575ssY5RAFpxG5ku/Ub0VkVNK:SG++CnYB5lQpHIssYYxGmu/Ub0+NK
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence