a0c62184df9e95e130dab8131d80e481ae1a3e3ea2cca8ebf50225af44cdf718 | Triage

Sharing

General

Target

a0c62184df9e95e130dab8131d80e481ae1a3e3ea2cca8ebf50225af44cdf718
Size

79KB
Sample

240915-amtjpavfrr
MD5

263ef6c691600463ccb0f5b5bd7b9e43
SHA1

6bea1630a54d7fc6446c4504c33d68dbe284c18b
SHA256

a0c62184df9e95e130dab8131d80e481ae1a3e3ea2cca8ebf50225af44cdf718
SHA512

079fd0e2ebc25212bd0322839dcdce9e3e46316457da9a1fee4c7a3c6cc3ef229c5f11fd84c6cbec213e7522bd17964ed9a02f7faf0d72300895aafcf120d01d
SSDEEP

1536:ODE8OD1HLuoe6aX1B1bWMO9B3gBKZrI1jHJZrR:ODETDpSaa/lWhgIu1jHJ9R

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a0c62184df9e95e130dab8131d80e481ae1a3e3ea2cca8ebf50225af44cdf718
- Size
  
  79KB
- MD5
  
  263ef6c691600463ccb0f5b5bd7b9e43
- SHA1
  
  6bea1630a54d7fc6446c4504c33d68dbe284c18b
- SHA256
  
  a0c62184df9e95e130dab8131d80e481ae1a3e3ea2cca8ebf50225af44cdf718
- SHA512
  
  079fd0e2ebc25212bd0322839dcdce9e3e46316457da9a1fee4c7a3c6cc3ef229c5f11fd84c6cbec213e7522bd17964ed9a02f7faf0d72300895aafcf120d01d
- SSDEEP
  
  1536:ODE8OD1HLuoe6aX1B1bWMO9B3gBKZrI1jHJZrR:ODETDpSaa/lWhgIu1jHJ9R
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence