eaaba4257f0daec8486b1a0ffa5a2bfa50dbe954cb699c2e572fb9f445f88a54 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d428d9af557f83c63297147d77255e50N
Size

108KB
Sample

240913-nn6saszbjr
MD5

d428d9af557f83c63297147d77255e50
SHA1

151d43ed0ef57e44e13480a911351cc7ea063db4
SHA256

eaaba4257f0daec8486b1a0ffa5a2bfa50dbe954cb699c2e572fb9f445f88a54
SHA512

b36ed26acb7f84b6ace45a1183c120147001a8bfc94662147341ea949606a8eab0c427a057dd8eeada2dc5ec58747bb993a32b104c57d937d8346581a5fa4c48
SSDEEP

3072:zO7wyzXy54z6BW/ZBdyOdbMfGUVFcFmKcUsvKwF:z27W54WBiZBdxdAfGUVUs

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d428d9af557f83c63297147d77255e50N
- Size
  
  108KB
- MD5
  
  d428d9af557f83c63297147d77255e50
- SHA1
  
  151d43ed0ef57e44e13480a911351cc7ea063db4
- SHA256
  
  eaaba4257f0daec8486b1a0ffa5a2bfa50dbe954cb699c2e572fb9f445f88a54
- SHA512
  
  b36ed26acb7f84b6ace45a1183c120147001a8bfc94662147341ea949606a8eab0c427a057dd8eeada2dc5ec58747bb993a32b104c57d937d8346581a5fa4c48
- SSDEEP
  
  3072:zO7wyzXy54z6BW/ZBdyOdbMfGUVFcFmKcUsvKwF:z27W54WBiZBdxdAfGUVUs
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence