2f1484f98f19d34d3dd58124d7446999fd1a4212484f371b07c90a15e4f71837 | Triage

Sharing

General

Target

2f1484f98f19d34d3dd58124d7446999fd1a4212484f371b07c90a15e4f71837N
Size

96KB
Sample

240919-sj7agswakr
MD5

17153dd9d86368ad4916b01290ada3f0
SHA1

1daaaed4afd6b0f443a9a2a23f4f7aacc9d3df8d
SHA256

2f1484f98f19d34d3dd58124d7446999fd1a4212484f371b07c90a15e4f71837
SHA512

9d63de18f18f46bfd4c49f65eff8d2218386a8b272ceb0208441322a6235eb8455a0d2d66c40f59963542dc91454dfd5448b3076fa6ece8f2862503ba174685b
SSDEEP

1536:ZyvhmuVpmDjxG97Nyx7xrUvrop7g9zbLwvrxgDOOdOM6bOLXi8PmCofGy:pA9Zy9x0rs7wLTZdDrLXfzoey

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  2f1484f98f19d34d3dd58124d7446999fd1a4212484f371b07c90a15e4f71837N
- Size
  
  96KB
- MD5
  
  17153dd9d86368ad4916b01290ada3f0
- SHA1
  
  1daaaed4afd6b0f443a9a2a23f4f7aacc9d3df8d
- SHA256
  
  2f1484f98f19d34d3dd58124d7446999fd1a4212484f371b07c90a15e4f71837
- SHA512
  
  9d63de18f18f46bfd4c49f65eff8d2218386a8b272ceb0208441322a6235eb8455a0d2d66c40f59963542dc91454dfd5448b3076fa6ece8f2862503ba174685b
- SSDEEP
  
  1536:ZyvhmuVpmDjxG97Nyx7xrUvrop7g9zbLwvrxgDOOdOM6bOLXi8PmCofGy:pA9Zy9x0rs7wLTZdDrLXfzoey
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence