0f7816f73f4f2cfccf00d2cbbe38746dd8ce07438ab51ecd4a9fbe1baf8eebee | Triage

Sharing

General

Target

0f7816f73f4f2cfccf00d2cbbe38746dd8ce07438ab51ecd4a9fbe1baf8eebee
Size

79KB
Sample

240914-xe9l9szcpc
MD5

461569950dc8b1f760c4459579ee9c99
SHA1

0eb6faca8c3ce938c802df49fc343742c298cc0b
SHA256

0f7816f73f4f2cfccf00d2cbbe38746dd8ce07438ab51ecd4a9fbe1baf8eebee
SHA512

767a1831dafabe825a04f58a5b2aeb63d6844b4b8b006e35daf08d57858274abf4a218f92230b45099b573951bdaed74e1a46d8bf250f7ecd824b7d39003207e
SSDEEP

1536:Imbj86Yu1f6FRN+Y64YOye72a38AZrI1jHJZrR:vjIu1CF/+ztJeqwju1jHJ9R

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  0f7816f73f4f2cfccf00d2cbbe38746dd8ce07438ab51ecd4a9fbe1baf8eebee
- Size
  
  79KB
- MD5
  
  461569950dc8b1f760c4459579ee9c99
- SHA1
  
  0eb6faca8c3ce938c802df49fc343742c298cc0b
- SHA256
  
  0f7816f73f4f2cfccf00d2cbbe38746dd8ce07438ab51ecd4a9fbe1baf8eebee
- SHA512
  
  767a1831dafabe825a04f58a5b2aeb63d6844b4b8b006e35daf08d57858274abf4a218f92230b45099b573951bdaed74e1a46d8bf250f7ecd824b7d39003207e
- SSDEEP
  
  1536:Imbj86Yu1f6FRN+Y64YOye72a38AZrI1jHJZrR:vjIu1CF/+ztJeqwju1jHJ9R
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence