e4e22005c9c16ae58151f5ec7e026942a5647d98afe93eccaf7ff866908b81d6 | Triage

Sharing

General

Target

d46aca7570017a067fce922b5259cbb0N
Size

304KB
Sample

240915-gyt3xszcpl
MD5

d46aca7570017a067fce922b5259cbb0
SHA1

77bb65f792fa0fb909ecde9d7ced019584568081
SHA256

e4e22005c9c16ae58151f5ec7e026942a5647d98afe93eccaf7ff866908b81d6
SHA512

29fd10f3444d7042ec3e54eecc89e21a6e1ecd1b28e64926d2914f74be869e110591219e4a873218fcbb1e4343ffc1028cb2d14aabe66cba22e2948c0591568b
SSDEEP

3072:DeBa7tvUNh2xoVpt2FjxShtUeKcWmjRrzOKQKWKcWmjRrzOKcRppKwaN2c2XMSVh:DeBa7tvIhGoVb2dUhyl+9ZiLUmKyIxL

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d46aca7570017a067fce922b5259cbb0N
- Size
  
  304KB
- MD5
  
  d46aca7570017a067fce922b5259cbb0
- SHA1
  
  77bb65f792fa0fb909ecde9d7ced019584568081
- SHA256
  
  e4e22005c9c16ae58151f5ec7e026942a5647d98afe93eccaf7ff866908b81d6
- SHA512
  
  29fd10f3444d7042ec3e54eecc89e21a6e1ecd1b28e64926d2914f74be869e110591219e4a873218fcbb1e4343ffc1028cb2d14aabe66cba22e2948c0591568b
- SSDEEP
  
  3072:DeBa7tvUNh2xoVpt2FjxShtUeKcWmjRrzOKQKWKcWmjRrzOKcRppKwaN2c2XMSVh:DeBa7tvIhGoVb2dUhyl+9ZiLUmKyIxL
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence