82cbe2f5630320e9d5625ede6f53f861a95c0eab95848068b8278dff9f032493 | Triage

Sharing

General

Target

b5e9e90878415cf44c7a5fc2a6585f20N
Size

95KB
Sample

240914-rjdshaxfrl
MD5

b5e9e90878415cf44c7a5fc2a6585f20
SHA1

9d326fda26ab9371ff3eefc98e4111c0bceb7f12
SHA256

82cbe2f5630320e9d5625ede6f53f861a95c0eab95848068b8278dff9f032493
SHA512

1f4c7ee62aade08e312a1b77a0a15b1c336cb6f5b9c9efa738661cc85408ae8d263fbd16ae5b7d6d9c4a9836b1a1cf77950b01a8d1d9e025cd1c84d351980ad1
SSDEEP

1536:ZiQByTGqtnrDsZCkujMtyGbL8/5/1aDmuywwwwwwNs+yzeuLVOM6bOLXi8PmCofm:Zi6ar4zZtyGbL8/5/1a7ywwwwwwNs9zR

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b5e9e90878415cf44c7a5fc2a6585f20N
- Size
  
  95KB
- MD5
  
  b5e9e90878415cf44c7a5fc2a6585f20
- SHA1
  
  9d326fda26ab9371ff3eefc98e4111c0bceb7f12
- SHA256
  
  82cbe2f5630320e9d5625ede6f53f861a95c0eab95848068b8278dff9f032493
- SHA512
  
  1f4c7ee62aade08e312a1b77a0a15b1c336cb6f5b9c9efa738661cc85408ae8d263fbd16ae5b7d6d9c4a9836b1a1cf77950b01a8d1d9e025cd1c84d351980ad1
- SSDEEP
  
  1536:ZiQByTGqtnrDsZCkujMtyGbL8/5/1aDmuywwwwwwNs+yzeuLVOM6bOLXi8PmCofm:Zi6ar4zZtyGbL8/5/1a7ywwwwwwNs9zR
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence