19b3c73a1749c460a1b9bb7cda03ebf74363661aead04d956d56429cd48b485c | Triage

Sharing

General

Target

e0660a41844f4e852ef54eca57144af0N
Size

5.5MB
Sample

240914-cvasnasgmf
MD5

e0660a41844f4e852ef54eca57144af0
SHA1

121b4712c28e3f7c6faee959669d040e306fe76b
SHA256

19b3c73a1749c460a1b9bb7cda03ebf74363661aead04d956d56429cd48b485c
SHA512

11d8005b757081c88cda238b2016b60aac3bfe3e429595164dbed8b7a5006f994b873ebe695d4c1361a0b2289c6c9cd623acbe0a3f5c6153d9ba818a24aabef2
SSDEEP

12288:5K34v1v5m0sKA5p8Wgx+gWVBmLnWrOxNuxC7:k342oAL8WJm8MoC7

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e0660a41844f4e852ef54eca57144af0N
- Size
  
  5.5MB
- MD5
  
  e0660a41844f4e852ef54eca57144af0
- SHA1
  
  121b4712c28e3f7c6faee959669d040e306fe76b
- SHA256
  
  19b3c73a1749c460a1b9bb7cda03ebf74363661aead04d956d56429cd48b485c
- SHA512
  
  11d8005b757081c88cda238b2016b60aac3bfe3e429595164dbed8b7a5006f994b873ebe695d4c1361a0b2289c6c9cd623acbe0a3f5c6153d9ba818a24aabef2
- SSDEEP
  
  12288:5K34v1v5m0sKA5p8Wgx+gWVBmLnWrOxNuxC7:k342oAL8WJm8MoC7
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence