1bc49093f41bd0e34e7a337fda729608e8300f1ae52dfd1aaaef6d137cd2a53d | Triage

Sharing

General

Target

1bc49093f41bd0e34e7a337fda729608e8300f1ae52dfd1aaaef6d137cd2a53d
Size

89KB
Sample

240912-yfqffs1ckk
MD5

57abf73fd80447c1ed8cbfb501508a09
SHA1

9c52fe259c5cdec2f5c1cf6f789fa75a11244471
SHA256

1bc49093f41bd0e34e7a337fda729608e8300f1ae52dfd1aaaef6d137cd2a53d
SHA512

9ac6988937ec419abf6f03dfa147408806e1bf9648b393e32c6e58f923afbfb1681195191ee037345d02e9baf3528214942889304d7ab425dbb81d033c8d1174
SSDEEP

1536:mHb5nTQ6bKKTBCVKGbsmLxWCEaUn6CKOzOpj8kRQ3R+KRFR3RzR1URJrCiuiNj51:c5nkKFCbHLNEaUn68i58ke3jb5ZXUf2k

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1bc49093f41bd0e34e7a337fda729608e8300f1ae52dfd1aaaef6d137cd2a53d
- Size
  
  89KB
- MD5
  
  57abf73fd80447c1ed8cbfb501508a09
- SHA1
  
  9c52fe259c5cdec2f5c1cf6f789fa75a11244471
- SHA256
  
  1bc49093f41bd0e34e7a337fda729608e8300f1ae52dfd1aaaef6d137cd2a53d
- SHA512
  
  9ac6988937ec419abf6f03dfa147408806e1bf9648b393e32c6e58f923afbfb1681195191ee037345d02e9baf3528214942889304d7ab425dbb81d033c8d1174
- SSDEEP
  
  1536:mHb5nTQ6bKKTBCVKGbsmLxWCEaUn6CKOzOpj8kRQ3R+KRFR3RzR1URJrCiuiNj51:c5nkKFCbHLNEaUn68i58ke3jb5ZXUf2k
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence