1517a1cfedfe2608957978e841ca3c2969a07ba33fbb9e31fea07b0d58780411 | Triage

Sharing

General

Target

1517a1cfedfe2608957978e841ca3c2969a07ba33fbb9e31fea07b0d58780411
Size

85KB
Sample

240912-x1bmcszdmq
MD5

640723361c58e95cc232714ad68ef049
SHA1

375c39bdf1c63a7991cd868df7593d8877b129a4
SHA256

1517a1cfedfe2608957978e841ca3c2969a07ba33fbb9e31fea07b0d58780411
SHA512

5d1325125880ce5e926a234d39fd1eb6c04ba42331a22eaca9c3be9f5e0dde4560f996a0b687978abee211a46f83b5d8526fc137fb5250dfaf3aadf23cfd9f05
SSDEEP

1536:hJoEZT7MwhlDvvnfRrkp75s9Xdq2LHKMQ262AjCsQ2PCZZrqOlNfVSLUK+:h6EZT7ffvvnWXOHKMQH2qC7ZQOlzSLUN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1517a1cfedfe2608957978e841ca3c2969a07ba33fbb9e31fea07b0d58780411
- Size
  
  85KB
- MD5
  
  640723361c58e95cc232714ad68ef049
- SHA1
  
  375c39bdf1c63a7991cd868df7593d8877b129a4
- SHA256
  
  1517a1cfedfe2608957978e841ca3c2969a07ba33fbb9e31fea07b0d58780411
- SHA512
  
  5d1325125880ce5e926a234d39fd1eb6c04ba42331a22eaca9c3be9f5e0dde4560f996a0b687978abee211a46f83b5d8526fc137fb5250dfaf3aadf23cfd9f05
- SSDEEP
  
  1536:hJoEZT7MwhlDvvnfRrkp75s9Xdq2LHKMQ262AjCsQ2PCZZrqOlNfVSLUK+:h6EZT7ffvvnWXOHKMQH2qC7ZQOlzSLUN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence