47c82854f19a2ca7f3f20afd1e9ebdee7e9fff048bd30cdd776828b43ceb5a17 | Triage

Sharing

General

Target

47c82854f19a2ca7f3f20afd1e9ebdee7e9fff048bd30cdd776828b43ceb5a17N
Size

1.1MB
Sample

240919-xe6wdathre
MD5

d11c6fb2181fc6a3f1e4d27fad36b230
SHA1

a7b924bb6e60474286aa9113218e35e88ce98546
SHA256

47c82854f19a2ca7f3f20afd1e9ebdee7e9fff048bd30cdd776828b43ceb5a17
SHA512

6c043837e3632f37b1b69f29fd196333be938e2890f12aa050a7ebbb5b76d657ee2046c2a9caf9b4081c4ec4fa04c1d679ed74dc08abdfe718509b95c82af1fb
SSDEEP

24576:ynPMrQg5Wm0BmmvFimm0MTP7hm0BmmvFimm0HkEyDucEQX:ynPiQg5SiLi0kEyDucEQX

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  47c82854f19a2ca7f3f20afd1e9ebdee7e9fff048bd30cdd776828b43ceb5a17N
- Size
  
  1.1MB
- MD5
  
  d11c6fb2181fc6a3f1e4d27fad36b230
- SHA1
  
  a7b924bb6e60474286aa9113218e35e88ce98546
- SHA256
  
  47c82854f19a2ca7f3f20afd1e9ebdee7e9fff048bd30cdd776828b43ceb5a17
- SHA512
  
  6c043837e3632f37b1b69f29fd196333be938e2890f12aa050a7ebbb5b76d657ee2046c2a9caf9b4081c4ec4fa04c1d679ed74dc08abdfe718509b95c82af1fb
- SSDEEP
  
  24576:ynPMrQg5Wm0BmmvFimm0MTP7hm0BmmvFimm0HkEyDucEQX:ynPiQg5SiLi0kEyDucEQX
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence