5284a3cda888900ec58e09647a80ad778f6818aecf22dccbe5e32771b47b589f | Triage

Sharing

General

Target

f239ac1cbd277c89d061dfb7e760e0f0N
Size

483KB
Sample

240912-r36ydszbje
MD5

f239ac1cbd277c89d061dfb7e760e0f0
SHA1

30c024ac23f6aa3a1e37656dd202d7dc82b3cd30
SHA256

5284a3cda888900ec58e09647a80ad778f6818aecf22dccbe5e32771b47b589f
SHA512

8cd2a8963369b1a459b3fdb3a6a9f24f91d4f0b6c8125039eed5f92f5cc092a2f2563ae179e070f8b49f1144c44a278445feaa68792cb80e31dbcdb6c79b7feb
SSDEEP

6144:SQa0q3IKtFy5v1k3RMZebBDRMZebBGzxUur/THL1k3RMZebBvG0NPhGcRPTDpL1/:80q/tY5vARM0RM/3ARMSG0dhvARMoHG

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f239ac1cbd277c89d061dfb7e760e0f0N
- Size
  
  483KB
- MD5
  
  f239ac1cbd277c89d061dfb7e760e0f0
- SHA1
  
  30c024ac23f6aa3a1e37656dd202d7dc82b3cd30
- SHA256
  
  5284a3cda888900ec58e09647a80ad778f6818aecf22dccbe5e32771b47b589f
- SHA512
  
  8cd2a8963369b1a459b3fdb3a6a9f24f91d4f0b6c8125039eed5f92f5cc092a2f2563ae179e070f8b49f1144c44a278445feaa68792cb80e31dbcdb6c79b7feb
- SSDEEP
  
  6144:SQa0q3IKtFy5v1k3RMZebBDRMZebBGzxUur/THL1k3RMZebBvG0NPhGcRPTDpL1/:80q/tY5vARM0RM/3ARMSG0dhvARMoHG
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence