7f8da1b7c04125eb456c1a1d7fe5d5ff00964e047a6bb4dad9573f193d29fa97 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f4409344e31069f4a4cb1f259c227a10N
Size

96KB
Sample

240915-bvf41ayclj
MD5

f4409344e31069f4a4cb1f259c227a10
SHA1

db2e00ee12e0cc49e6f150cb9d3302138c8ca256
SHA256

7f8da1b7c04125eb456c1a1d7fe5d5ff00964e047a6bb4dad9573f193d29fa97
SHA512

f3a68b86a33baa9b785f5a479dc2752ce9efff78572e025685af12672638a165b769c1c0ff708e6e84d737a0b64960a341e3db454ee1403086b9214e1f8f0122
SSDEEP

1536:10aG3cbARTMLW0nWXwBBNV2zntqTNvBQTRQ+DR5R45WtqV9R2R462izMg3R7ih9:tSTM60ns0Bi2QTe+DHrtG9MW3+3l29

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f4409344e31069f4a4cb1f259c227a10N
- Size
  
  96KB
- MD5
  
  f4409344e31069f4a4cb1f259c227a10
- SHA1
  
  db2e00ee12e0cc49e6f150cb9d3302138c8ca256
- SHA256
  
  7f8da1b7c04125eb456c1a1d7fe5d5ff00964e047a6bb4dad9573f193d29fa97
- SHA512
  
  f3a68b86a33baa9b785f5a479dc2752ce9efff78572e025685af12672638a165b769c1c0ff708e6e84d737a0b64960a341e3db454ee1403086b9214e1f8f0122
- SSDEEP
  
  1536:10aG3cbARTMLW0nWXwBBNV2zntqTNvBQTRQ+DR5R45WtqV9R2R462izMg3R7ih9:tSTM60ns0Bi2QTe+DHrtG9MW3+3l29
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence