1193b58860cfe7f4ac37a4036dc761934ddd476576807d965d9ae32895104599 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1193b58860cfe7f4ac37a4036dc761934ddd476576807d965d9ae32895104599
Size

60KB
Sample

240912-xs4ceazapl
MD5

6fa4e115ceb329b1f5aee10365c2d5b1
SHA1

7cf9191cb66267d8f1bb5b2aaeaa2967bcd42e34
SHA256

1193b58860cfe7f4ac37a4036dc761934ddd476576807d965d9ae32895104599
SHA512

5cd8f3634b923990bcb0135515369a1caeb7a3b9044b85834e98f4c795718c2cd5abdde13a89cb74eaf3d59b83ff6813e4ff378de8d4ddec8b2f5ae4f4ffc8d7
SSDEEP

768:DoqE6FHB/UCQ6qRU5K+unbNWEvn/kPUeHEnztUmvYKlToH///cp6fj5xk/1H5+t+:Djp/A6qzl/dPhYOs///cC58IHB86l1rs

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1193b58860cfe7f4ac37a4036dc761934ddd476576807d965d9ae32895104599
- Size
  
  60KB
- MD5
  
  6fa4e115ceb329b1f5aee10365c2d5b1
- SHA1
  
  7cf9191cb66267d8f1bb5b2aaeaa2967bcd42e34
- SHA256
  
  1193b58860cfe7f4ac37a4036dc761934ddd476576807d965d9ae32895104599
- SHA512
  
  5cd8f3634b923990bcb0135515369a1caeb7a3b9044b85834e98f4c795718c2cd5abdde13a89cb74eaf3d59b83ff6813e4ff378de8d4ddec8b2f5ae4f4ffc8d7
- SSDEEP
  
  768:DoqE6FHB/UCQ6qRU5K+unbNWEvn/kPUeHEnztUmvYKlToH///cp6fj5xk/1H5+t+:Djp/A6qzl/dPhYOs///cC58IHB86l1rs
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence