24d7a39b1f5abb623956581ec200d854715f8ac0a17b108f18d8539ff4de0272 | Triage

Sharing

General

Target

24d7a39b1f5abb623956581ec200d854715f8ac0a17b108f18d8539ff4de0272N
Size

56KB
Sample

240920-3ch97athjm
MD5

67c9bfa0ac843dab1ba7d39854d659f0
SHA1

a1e0c69010e0ae124a8ea4741147f021ce01c5d6
SHA256

24d7a39b1f5abb623956581ec200d854715f8ac0a17b108f18d8539ff4de0272
SHA512

4421c5c4de75fc82612398ba2127a37527745a51c3da374a66ad083428d999fb1f5ba43875a65ab60eeccc2dd16aec1a1371e6c4d0b6edb988773135d5f818a2
SSDEEP

768:lf6tPADnszk/CjxYtluIuLxAzXiTTUvcIeEJ98F8c2EtB/yoX+cDIZ9ZLWAJBv81:lEAD5eRotKL9yoX+zZ/dkt

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  24d7a39b1f5abb623956581ec200d854715f8ac0a17b108f18d8539ff4de0272N
- Size
  
  56KB
- MD5
  
  67c9bfa0ac843dab1ba7d39854d659f0
- SHA1
  
  a1e0c69010e0ae124a8ea4741147f021ce01c5d6
- SHA256
  
  24d7a39b1f5abb623956581ec200d854715f8ac0a17b108f18d8539ff4de0272
- SHA512
  
  4421c5c4de75fc82612398ba2127a37527745a51c3da374a66ad083428d999fb1f5ba43875a65ab60eeccc2dd16aec1a1371e6c4d0b6edb988773135d5f818a2
- SSDEEP
  
  768:lf6tPADnszk/CjxYtluIuLxAzXiTTUvcIeEJ98F8c2EtB/yoX+cDIZ9ZLWAJBv81:lEAD5eRotKL9yoX+zZ/dkt
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence