a21dd7041c16baf6d0f2ec966b10b4d5e79e073d47211d6ae0840f975384a5f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f06c69275b4690d9745370025a311ab0N
Size

256KB
Sample

240913-jzpwpssgjk
MD5

f06c69275b4690d9745370025a311ab0
SHA1

0baf60d82118421656ee66797bf4623beca6a9bb
SHA256

a21dd7041c16baf6d0f2ec966b10b4d5e79e073d47211d6ae0840f975384a5f9
SHA512

0716fa90d0f24204dfad5911d10ade0f69819fe8776b19f059e04e94407cc968c05f874c9745445336b1877e1ff6a0e3ed5ddb32ccd07685cece2a481f71fcb4
SSDEEP

6144:AfuHcOxPNkl639bSR0xZKL2bWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/YRA:MhOpbSwwL2bWGRdA6sQhPbWGRdA6sQxA

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f06c69275b4690d9745370025a311ab0N
- Size
  
  256KB
- MD5
  
  f06c69275b4690d9745370025a311ab0
- SHA1
  
  0baf60d82118421656ee66797bf4623beca6a9bb
- SHA256
  
  a21dd7041c16baf6d0f2ec966b10b4d5e79e073d47211d6ae0840f975384a5f9
- SHA512
  
  0716fa90d0f24204dfad5911d10ade0f69819fe8776b19f059e04e94407cc968c05f874c9745445336b1877e1ff6a0e3ed5ddb32ccd07685cece2a481f71fcb4
- SSDEEP
  
  6144:AfuHcOxPNkl639bSR0xZKL2bWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/YRA:MhOpbSwwL2bWGRdA6sQhPbWGRdA6sQxA
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence