fe02d8bd031828aa9a5a241b2e82bef8430eca143390de2df47700d2422475a8 | Triage

Sharing

General

Target

fe02d8bd031828aa9a5a241b2e82bef8430eca143390de2df47700d2422475a8N
Size

73KB
Sample

240919-vb1tvazcrn
MD5

8fbd18a96ec881781f0e33e71a3845e0
SHA1

68f596b39e129a0bb06ba77ecdfa75463c8a7d69
SHA256

fe02d8bd031828aa9a5a241b2e82bef8430eca143390de2df47700d2422475a8
SHA512

6d4f99051d088a1719a93f9d967ecb6b01426543a5d94f3db60037e7057e0caf8761058a7be5b3ba8e807a01e5b710eeb8144242811b28b122ba192d74d04a6e
SSDEEP

1536:5jWSAp2o+oynHpLXuOUFCJjCYYYYYYYqA9Ugi5YMkhohQ:5yj25JrUFCOA9UgOUt

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fe02d8bd031828aa9a5a241b2e82bef8430eca143390de2df47700d2422475a8N
- Size
  
  73KB
- MD5
  
  8fbd18a96ec881781f0e33e71a3845e0
- SHA1
  
  68f596b39e129a0bb06ba77ecdfa75463c8a7d69
- SHA256
  
  fe02d8bd031828aa9a5a241b2e82bef8430eca143390de2df47700d2422475a8
- SHA512
  
  6d4f99051d088a1719a93f9d967ecb6b01426543a5d94f3db60037e7057e0caf8761058a7be5b3ba8e807a01e5b710eeb8144242811b28b122ba192d74d04a6e
- SSDEEP
  
  1536:5jWSAp2o+oynHpLXuOUFCJjCYYYYYYYqA9Ugi5YMkhohQ:5yj25JrUFCOA9UgOUt
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence