2faebf09c89836c180c6c5099741d3914493d1c86fe125d8ac1272de3f85cf48 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

47fe675aac49bb269fce35df3d359390N
Size

89KB
Sample

240915-htw76a1enc
MD5

47fe675aac49bb269fce35df3d359390
SHA1

f7cb3b550e92e230993c6b1ece0fd36584de140e
SHA256

2faebf09c89836c180c6c5099741d3914493d1c86fe125d8ac1272de3f85cf48
SHA512

ae12ae322aabd953ceb3a1fac5edcb049e8836c3a4ce7e88de31bd667e72d6589c0f8e352dcc5bd405d9313e7b315352112e6dee7be52972b39b3fbfc7f5294a
SSDEEP

1536:emrS3JBNlAISbS5HlF2yj/o08fKm4uTy7ceyZxNoeRQYNR+KRFR3RzR1URJrCiuS:3S39lAXW5l1/78im4uT4c/eijb5ZXUf5

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  47fe675aac49bb269fce35df3d359390N
- Size
  
  89KB
- MD5
  
  47fe675aac49bb269fce35df3d359390
- SHA1
  
  f7cb3b550e92e230993c6b1ece0fd36584de140e
- SHA256
  
  2faebf09c89836c180c6c5099741d3914493d1c86fe125d8ac1272de3f85cf48
- SHA512
  
  ae12ae322aabd953ceb3a1fac5edcb049e8836c3a4ce7e88de31bd667e72d6589c0f8e352dcc5bd405d9313e7b315352112e6dee7be52972b39b3fbfc7f5294a
- SSDEEP
  
  1536:emrS3JBNlAISbS5HlF2yj/o08fKm4uTy7ceyZxNoeRQYNR+KRFR3RzR1URJrCiuS:3S39lAXW5l1/78im4uT4c/eijb5ZXUf5
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence