15231d2ffbbbf8cc87ec4f41678cd4103534f771f57a64956bd6cc982434ffb1 | Triage

Sharing

General

Target

15231d2ffbbbf8cc87ec4f41678cd4103534f771f57a64956bd6cc982434ffb1
Size

96KB
Sample

240912-x1l34azfqh
MD5

a4c38730d71e8f4b291d35cc176032c0
SHA1

cf06a0b94763906a76f17d46948939d2eb84aebb
SHA256

15231d2ffbbbf8cc87ec4f41678cd4103534f771f57a64956bd6cc982434ffb1
SHA512

02c69a429fbed1312987c7aff4240e308a1744aa96917640e76a6cede3624b3311b5b59738cc7d8b71d0fdc0989ca24eed47020637fe13f1a56bdf0d2d236b8f
SSDEEP

1536:hVjs70LyYARqtuZPcQzOTeELof7UYEtXty3TSQFFfUN1Avhw6JCMd:hi0LyY+qti5ELw7Km3OQFFfUrQlMW

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  15231d2ffbbbf8cc87ec4f41678cd4103534f771f57a64956bd6cc982434ffb1
- Size
  
  96KB
- MD5
  
  a4c38730d71e8f4b291d35cc176032c0
- SHA1
  
  cf06a0b94763906a76f17d46948939d2eb84aebb
- SHA256
  
  15231d2ffbbbf8cc87ec4f41678cd4103534f771f57a64956bd6cc982434ffb1
- SHA512
  
  02c69a429fbed1312987c7aff4240e308a1744aa96917640e76a6cede3624b3311b5b59738cc7d8b71d0fdc0989ca24eed47020637fe13f1a56bdf0d2d236b8f
- SSDEEP
  
  1536:hVjs70LyYARqtuZPcQzOTeELof7UYEtXty3TSQFFfUN1Avhw6JCMd:hi0LyY+qti5ELw7Km3OQFFfUrQlMW
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence