00d997990802950315fc45abe42fe4a3eca3b0c1ca4105c83a02145214dc4d2e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00d997990802950315fc45abe42fe4a3eca3b0c1ca4105c83a02145214dc4d2e
Size

80KB
Sample

240913-wnqebazgmk
MD5

3dd39ad3ebe7fd8f0288913faa011cfe
SHA1

288286c8d693e9a1dba2438e1925b423cc2d356a
SHA256

00d997990802950315fc45abe42fe4a3eca3b0c1ca4105c83a02145214dc4d2e
SHA512

874a06248314f0f3a52e949cf3e2bb69fd7c712271fcb0256834a550ba04db27066df7c311939df96f850cb96d3479d8c3a2ae8b070acfbee58843f97fa2307b
SSDEEP

1536:vc4cwwy/JQxgCzPR5c/iJ1oOAR2LLaIZTJ+7LhkiB0:E5wwy/JQTP4uoSLaMU7ui

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  00d997990802950315fc45abe42fe4a3eca3b0c1ca4105c83a02145214dc4d2e
- Size
  
  80KB
- MD5
  
  3dd39ad3ebe7fd8f0288913faa011cfe
- SHA1
  
  288286c8d693e9a1dba2438e1925b423cc2d356a
- SHA256
  
  00d997990802950315fc45abe42fe4a3eca3b0c1ca4105c83a02145214dc4d2e
- SHA512
  
  874a06248314f0f3a52e949cf3e2bb69fd7c712271fcb0256834a550ba04db27066df7c311939df96f850cb96d3479d8c3a2ae8b070acfbee58843f97fa2307b
- SSDEEP
  
  1536:vc4cwwy/JQxgCzPR5c/iJ1oOAR2LLaIZTJ+7LhkiB0:E5wwy/JQTP4uoSLaMU7ui
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence