2907730bbfcc5bc500fa74421b8a355e14909c29addfcbaf36b0a6e0eae8e627 | Triage

Sharing

General

Target

2907730bbfcc5bc500fa74421b8a355e14909c29addfcbaf36b0a6e0eae8e627
Size

96KB
Sample

240912-zglpbstcmr
MD5

83d522434a0365a7abce895943218e0a
SHA1

cb93c76610088c88b8c65417799991313106e73f
SHA256

2907730bbfcc5bc500fa74421b8a355e14909c29addfcbaf36b0a6e0eae8e627
SHA512

1a16f105d4572871a9fbfbfffd3bcb0a605dd83d0946a9fb095e87c35a4a380538cc939d68be0bf8c2972825bb2f2844ae0c78839c6b04a498f1f5172e141351
SSDEEP

1536:uAmhZHxIjbfNO5W7rThvz62L6ZS/FCb4noaJSNzJO/:c8+WPlrH6ZSs4noakXO/

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  2907730bbfcc5bc500fa74421b8a355e14909c29addfcbaf36b0a6e0eae8e627
- Size
  
  96KB
- MD5
  
  83d522434a0365a7abce895943218e0a
- SHA1
  
  cb93c76610088c88b8c65417799991313106e73f
- SHA256
  
  2907730bbfcc5bc500fa74421b8a355e14909c29addfcbaf36b0a6e0eae8e627
- SHA512
  
  1a16f105d4572871a9fbfbfffd3bcb0a605dd83d0946a9fb095e87c35a4a380538cc939d68be0bf8c2972825bb2f2844ae0c78839c6b04a498f1f5172e141351
- SSDEEP
  
  1536:uAmhZHxIjbfNO5W7rThvz62L6ZS/FCb4noaJSNzJO/:c8+WPlrH6ZSs4noakXO/
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence