9c3508267f272803878189e118686df4ce0d570a3f97a598237e324867ce80c3 | Triage

Sharing

General

Target

9c3508267f272803878189e118686df4ce0d570a3f97a598237e324867ce80c3
Size

72KB
Sample

240915-afpl6avejg
MD5

7f367cb0dc9958519dffa6706a082eea
SHA1

89827a845b02a35e769ab4846592bafb9031b741
SHA256

9c3508267f272803878189e118686df4ce0d570a3f97a598237e324867ce80c3
SHA512

73c5f1d4b1121a481ad7f5b4cb2bae8ecaf07b03c66e21e0510195dcee9a31dd73a20e13c9880a4c60fddfe17938fc74c643f142012c605c09bf7783bc53f217
SSDEEP

768:jvoDpoPmbLwGqLxGD74HOVFk0dkRWpeNQdNr+PRpTwww0pdrYYn3nF2p/1H5G35w:Du2OfwGuHqetu+Pj3nF2Li6+lWCWQ+

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  9c3508267f272803878189e118686df4ce0d570a3f97a598237e324867ce80c3
- Size
  
  72KB
- MD5
  
  7f367cb0dc9958519dffa6706a082eea
- SHA1
  
  89827a845b02a35e769ab4846592bafb9031b741
- SHA256
  
  9c3508267f272803878189e118686df4ce0d570a3f97a598237e324867ce80c3
- SHA512
  
  73c5f1d4b1121a481ad7f5b4cb2bae8ecaf07b03c66e21e0510195dcee9a31dd73a20e13c9880a4c60fddfe17938fc74c643f142012c605c09bf7783bc53f217
- SSDEEP
  
  768:jvoDpoPmbLwGqLxGD74HOVFk0dkRWpeNQdNr+PRpTwww0pdrYYn3nF2p/1H5G35w:Du2OfwGuHqetu+Pj3nF2Li6+lWCWQ+
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence