d060fd3f7dab2b146b4bd986ce41965d09cdfb6c0f7b0aedca6b369c93b976f6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

febb0a9abcc706f776cb59430c478340N
Size

76KB
Sample

240913-v9rzlazfkd
MD5

febb0a9abcc706f776cb59430c478340
SHA1

9a7709b65dfcdc1447e844f068ce01ad9abc8978
SHA256

d060fd3f7dab2b146b4bd986ce41965d09cdfb6c0f7b0aedca6b369c93b976f6
SHA512

fadb49b0a7d3a59fb6231af6308aa32a5269ee03e7f029fcf7c0a8ef5b4f2df0a0cf54c2d02a073f435531942c96743fe05716a984b9a6d3affbc2ea849c926b
SSDEEP

1536:QzwFRkxTTJq0ep9u9TRF5cv7LvM9MaxunjhwOaV5q+Ybe0rLNCHioQV+/eCeyvCQ:weCVTJhep9uN5cv7L09MaxuFjaV5z29S

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  febb0a9abcc706f776cb59430c478340N
- Size
  
  76KB
- MD5
  
  febb0a9abcc706f776cb59430c478340
- SHA1
  
  9a7709b65dfcdc1447e844f068ce01ad9abc8978
- SHA256
  
  d060fd3f7dab2b146b4bd986ce41965d09cdfb6c0f7b0aedca6b369c93b976f6
- SHA512
  
  fadb49b0a7d3a59fb6231af6308aa32a5269ee03e7f029fcf7c0a8ef5b4f2df0a0cf54c2d02a073f435531942c96743fe05716a984b9a6d3affbc2ea849c926b
- SSDEEP
  
  1536:QzwFRkxTTJq0ep9u9TRF5cv7LvM9MaxunjhwOaV5q+Ybe0rLNCHioQV+/eCeyvCQ:weCVTJhep9uN5cv7L09MaxuFjaV5z29S
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence