96011c9a14b84c60777b188b793d156d97db82b73407d656cd192081caae125e | Triage

Sharing

General

Target

4a9bff7e172000770c9821aa1ab1b8a0N
Size

74KB
Sample

240914-fwdsgsyajl
MD5

4a9bff7e172000770c9821aa1ab1b8a0
SHA1

491cb0fba8c261d6c3021e9c19ccd94a82db3068
SHA256

96011c9a14b84c60777b188b793d156d97db82b73407d656cd192081caae125e
SHA512

d227c087468b6b834ff4afd05dcd564cd93e62faf8db3347e15c23e80dc8f48d1aa66d04c13c084ea91ed0e3070448c3a92d8d3b70875233fae2f76b4c57815b
SSDEEP

1536:usFhGPP0Y2I5nxqlt5sXXBjc4phbvz3jtU/uD+TaC:FfGPP0YdZx0uRc0xUWSTn

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  4a9bff7e172000770c9821aa1ab1b8a0N
- Size
  
  74KB
- MD5
  
  4a9bff7e172000770c9821aa1ab1b8a0
- SHA1
  
  491cb0fba8c261d6c3021e9c19ccd94a82db3068
- SHA256
  
  96011c9a14b84c60777b188b793d156d97db82b73407d656cd192081caae125e
- SHA512
  
  d227c087468b6b834ff4afd05dcd564cd93e62faf8db3347e15c23e80dc8f48d1aa66d04c13c084ea91ed0e3070448c3a92d8d3b70875233fae2f76b4c57815b
- SSDEEP
  
  1536:usFhGPP0Y2I5nxqlt5sXXBjc4phbvz3jtU/uD+TaC:FfGPP0YdZx0uRc0xUWSTn
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence