a68adc59d52c0654914c84c662965add9a569d87bff012e2811e0be2e8e6e5d5 | Triage

Sharing

General

Target

a68adc59d52c0654914c84c662965add9a569d87bff012e2811e0be2e8e6e5d5N
Size

465KB
Sample

240920-s93pzsvdnk
MD5

fcc257371826da82c9a01bd1e7064310
SHA1

348adb0e59e7366f7e104b24427984f7d3eb6e78
SHA256

a68adc59d52c0654914c84c662965add9a569d87bff012e2811e0be2e8e6e5d5
SHA512

72f21bbaf95cad335d44376ea56f0c3de74e41ec32e9ccaab868006d3dbe0225944a95c653905209bfe4dab78945fdd02bb2b655543d8ca0b35f5b94974023ac
SSDEEP

6144:MYlDPu3njPX9ZAkvntd4ljd3rKzwN8Jlljd3njPX9ZAk3fs:8jP9ZtVkjpKXjtjP9Zt0

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a68adc59d52c0654914c84c662965add9a569d87bff012e2811e0be2e8e6e5d5N
- Size
  
  465KB
- MD5
  
  fcc257371826da82c9a01bd1e7064310
- SHA1
  
  348adb0e59e7366f7e104b24427984f7d3eb6e78
- SHA256
  
  a68adc59d52c0654914c84c662965add9a569d87bff012e2811e0be2e8e6e5d5
- SHA512
  
  72f21bbaf95cad335d44376ea56f0c3de74e41ec32e9ccaab868006d3dbe0225944a95c653905209bfe4dab78945fdd02bb2b655543d8ca0b35f5b94974023ac
- SSDEEP
  
  6144:MYlDPu3njPX9ZAkvntd4ljd3rKzwN8Jlljd3njPX9ZAk3fs:8jP9ZtVkjpKXjtjP9Zt0
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence