9984b009d922baece5f955f4c0fb65fc98de5e4cb6b75bf059c37c4f613984b7 | Triage

Sharing

General

Target

9984b009d922baece5f955f4c0fb65fc98de5e4cb6b75bf059c37c4f613984b7N
Size

468KB
Sample

240919-ephx7azgja
MD5

d420ae0562107265b73332db445e23f0
SHA1

3676a584a1c057123920373fbd679e10464a977d
SHA256

9984b009d922baece5f955f4c0fb65fc98de5e4cb6b75bf059c37c4f613984b7
SHA512

06f63cf9a7b7fe22e3b2501200c729517de282d8802bc7d6de03684384bccbae6561376953a8199dfeeb18892b97b6e321638700ac4e1c7e37fa42a62bedaa84
SSDEEP

3072:mqmhogKxjU8I/bYrPz3Emf8/EGhcXdIpldmHBzVpPlLH3ljqJpElf:mqIotZI/APDEmfJd0W7lLXlqJp

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  9984b009d922baece5f955f4c0fb65fc98de5e4cb6b75bf059c37c4f613984b7N
- Size
  
  468KB
- MD5
  
  d420ae0562107265b73332db445e23f0
- SHA1
  
  3676a584a1c057123920373fbd679e10464a977d
- SHA256
  
  9984b009d922baece5f955f4c0fb65fc98de5e4cb6b75bf059c37c4f613984b7
- SHA512
  
  06f63cf9a7b7fe22e3b2501200c729517de282d8802bc7d6de03684384bccbae6561376953a8199dfeeb18892b97b6e321638700ac4e1c7e37fa42a62bedaa84
- SSDEEP
  
  3072:mqmhogKxjU8I/bYrPz3Emf8/EGhcXdIpldmHBzVpPlLH3ljqJpElf:mqIotZI/APDEmfJd0W7lLXlqJp
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence