5a95351596daa44c07d3fb2c6d13de5eeb2566c38e75712a3ae0130dfc866d43 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

131514af45d8577c0dbc1a69d129c350N
Size

245KB
Sample

240914-k964eawgpl
MD5

131514af45d8577c0dbc1a69d129c350
SHA1

5bfa5212f1e7d18fd433e27f168ca3c9d505810b
SHA256

5a95351596daa44c07d3fb2c6d13de5eeb2566c38e75712a3ae0130dfc866d43
SHA512

75934100db00e7b57bb0317a9aa75a307763732d6ca46da698c5af3e1b3b8377239085c1d81beb452c03f8ef79280df3b29cf39c3ae73ba8fefaf8940ab07be6
SSDEEP

1536:b32xToKgZxilNxT6pndRB1/4cXeXvubKrFEwMEwKhbArEwKhQL4cXeXvubKr:moKgZxi3MpnrB1wago+bAr+Qka

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  131514af45d8577c0dbc1a69d129c350N
- Size
  
  245KB
- MD5
  
  131514af45d8577c0dbc1a69d129c350
- SHA1
  
  5bfa5212f1e7d18fd433e27f168ca3c9d505810b
- SHA256
  
  5a95351596daa44c07d3fb2c6d13de5eeb2566c38e75712a3ae0130dfc866d43
- SHA512
  
  75934100db00e7b57bb0317a9aa75a307763732d6ca46da698c5af3e1b3b8377239085c1d81beb452c03f8ef79280df3b29cf39c3ae73ba8fefaf8940ab07be6
- SSDEEP
  
  1536:b32xToKgZxilNxT6pndRB1/4cXeXvubKrFEwMEwKhbArEwKhQL4cXeXvubKr:moKgZxi3MpnrB1wago+bAr+Qka
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence