6a3a80590ccea03bec9a1752545ec461a5db382e29977bc6e3d6e9e4fa9ef4b9 | Triage

Sharing

General

Target

9ddb75b530990178f0a6dacafc9c2b60N
Size

128KB
Sample

240913-s37elawaln
MD5

9ddb75b530990178f0a6dacafc9c2b60
SHA1

e2e73b37c82fac10000f1e284b572d839384eb6d
SHA256

6a3a80590ccea03bec9a1752545ec461a5db382e29977bc6e3d6e9e4fa9ef4b9
SHA512

c654b43900442dc6da788214874350c4a6f9348bd450c23222688b30b4a005e12598dee3bcc84b87eb0cbf9aeae18ce8cadfff87c0b5b80b907e87a175ccaeec
SSDEEP

3072:9njyhH8Dy/1VIiBhzNWq08uFafmHURHAVgnvedh6:9njev/1zBh5Wq08uF8YU8gnve7

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  9ddb75b530990178f0a6dacafc9c2b60N
- Size
  
  128KB
- MD5
  
  9ddb75b530990178f0a6dacafc9c2b60
- SHA1
  
  e2e73b37c82fac10000f1e284b572d839384eb6d
- SHA256
  
  6a3a80590ccea03bec9a1752545ec461a5db382e29977bc6e3d6e9e4fa9ef4b9
- SHA512
  
  c654b43900442dc6da788214874350c4a6f9348bd450c23222688b30b4a005e12598dee3bcc84b87eb0cbf9aeae18ce8cadfff87c0b5b80b907e87a175ccaeec
- SSDEEP
  
  3072:9njyhH8Dy/1VIiBhzNWq08uFafmHURHAVgnvedh6:9njev/1zBh5Wq08uF8YU8gnve7
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence