02b213af17a2b017e90e39645455782a2222f38357644e5afa19b80efbdb30d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02b213af17a2b017e90e39645455782a2222f38357644e5afa19b80efbdb30d0
Size

80KB
Sample

240914-wrje6sxfmj
MD5

0670fe4369c6385820d0378059101739
SHA1

bf253cef92df2b848f62cfc8971d749eed90f295
SHA256

02b213af17a2b017e90e39645455782a2222f38357644e5afa19b80efbdb30d0
SHA512

269dc2e089ee72d5fafed00edc11455779c74250fb99c8a50722a9a9026c7a08df7d85c50a1bf367365dd374e7c11eccb491fdb1ac9d065e18bc2ffc41c728ff
SSDEEP

1536:ApNGwqJU248h+QYZ7NMuss3XnQqPZPP000xuj2LRcaIZTJ+7LhkiB0:ApNqU2/+bZ7NMu73SP6aMU7ui

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  02b213af17a2b017e90e39645455782a2222f38357644e5afa19b80efbdb30d0
- Size
  
  80KB
- MD5
  
  0670fe4369c6385820d0378059101739
- SHA1
  
  bf253cef92df2b848f62cfc8971d749eed90f295
- SHA256
  
  02b213af17a2b017e90e39645455782a2222f38357644e5afa19b80efbdb30d0
- SHA512
  
  269dc2e089ee72d5fafed00edc11455779c74250fb99c8a50722a9a9026c7a08df7d85c50a1bf367365dd374e7c11eccb491fdb1ac9d065e18bc2ffc41c728ff
- SSDEEP
  
  1536:ApNGwqJU248h+QYZ7NMuss3XnQqPZPP000xuj2LRcaIZTJ+7LhkiB0:ApNqU2/+bZ7NMu73SP6aMU7ui
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence