f80de9b1780c03cfd79ca46b26e9accfc88b946234b19f4b7378dd45b2678c01 | Triage

Sharing

General

Target

f80de9b1780c03cfd79ca46b26e9accfc88b946234b19f4b7378dd45b2678c01N
Size

93KB
Sample

240919-hrgppawdla
MD5

fcc932b433ccae54465e46c2befdf820
SHA1

055a6866e6bd6a10706473718c946a7d033a2f1f
SHA256

f80de9b1780c03cfd79ca46b26e9accfc88b946234b19f4b7378dd45b2678c01
SHA512

5ac7d83d5d4b77765598e00b71cf572d5d0af54d7d1462b70f3a9dbe4063937ade555f5bc43abf785056777d9640c3d55cf04b5be973285eb0ebff45af90656f
SSDEEP

1536:XMWAAMdD+jnJx5RBjjiWm9si2bJc0LO1VSz9z/YJjaesRQvRkRLJzeLD9N0iQGR4:XMW8QzhiWmNYROqz9zAJ+1evSJdEN0si

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f80de9b1780c03cfd79ca46b26e9accfc88b946234b19f4b7378dd45b2678c01N
- Size
  
  93KB
- MD5
  
  fcc932b433ccae54465e46c2befdf820
- SHA1
  
  055a6866e6bd6a10706473718c946a7d033a2f1f
- SHA256
  
  f80de9b1780c03cfd79ca46b26e9accfc88b946234b19f4b7378dd45b2678c01
- SHA512
  
  5ac7d83d5d4b77765598e00b71cf572d5d0af54d7d1462b70f3a9dbe4063937ade555f5bc43abf785056777d9640c3d55cf04b5be973285eb0ebff45af90656f
- SSDEEP
  
  1536:XMWAAMdD+jnJx5RBjjiWm9si2bJc0LO1VSz9z/YJjaesRQvRkRLJzeLD9N0iQGR4:XMW8QzhiWmNYROqz9zAJ+1evSJdEN0si
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence