9daf66f000b6897e6c4043d0c5ef4f59f34a479b9e70660a914cef19e7a26248 | Triage

Sharing

General

Target

9daf66f000b6897e6c4043d0c5ef4f59f34a479b9e70660a914cef19e7a26248
Size

59KB
Sample

240915-ahq8rsvdrp
MD5

6214c5f9375c44bcedd5ec2664b85b09
SHA1

b650a20e19fbbfb5ea7e5ea1eb8e449076082c49
SHA256

9daf66f000b6897e6c4043d0c5ef4f59f34a479b9e70660a914cef19e7a26248
SHA512

5d8960b5f89e877faeac0317b64da53dd386b8c3f5ab6552614d6a1da444ccee2377973726bb3466a0bcd9d25981af343933fc48f66f274491a83ebd0915bc3e
SSDEEP

1536:+ZsJA/2oT7/krM4D9EyxoXQJWMkPCWm8gvfNCyVso:+Zam2oT7/kKrzgQeso

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  9daf66f000b6897e6c4043d0c5ef4f59f34a479b9e70660a914cef19e7a26248
- Size
  
  59KB
- MD5
  
  6214c5f9375c44bcedd5ec2664b85b09
- SHA1
  
  b650a20e19fbbfb5ea7e5ea1eb8e449076082c49
- SHA256
  
  9daf66f000b6897e6c4043d0c5ef4f59f34a479b9e70660a914cef19e7a26248
- SHA512
  
  5d8960b5f89e877faeac0317b64da53dd386b8c3f5ab6552614d6a1da444ccee2377973726bb3466a0bcd9d25981af343933fc48f66f274491a83ebd0915bc3e
- SSDEEP
  
  1536:+ZsJA/2oT7/krM4D9EyxoXQJWMkPCWm8gvfNCyVso:+Zam2oT7/kKrzgQeso
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence