2019e866ea1aa39e184b3153dd3367edccd09fc74af77d6231826b5cd850abf8 | Triage

Sharing

General

Target

2019e866ea1aa39e184b3153dd3367edccd09fc74af77d6231826b5cd850abf8N
Size

89KB
Sample

240920-wtlnbazelb
MD5

9136d9f9ec017464a320c505046994d0
SHA1

d53137751ada5b94ba0bdfa98089caa8cd14b8e1
SHA256

2019e866ea1aa39e184b3153dd3367edccd09fc74af77d6231826b5cd850abf8
SHA512

8ce03655674b905db390811ba3aac9384a16b3182b59e54184e382a22d3951f177e6fd78345348ce3157d0af42d2459eb25b97184985bb45ddfad36bbbbc78bf
SSDEEP

1536:LqkN6W6HtCSZiaQhviSwkTS1Mzw/eveLE53y4M+t8lVq4haDqqcKlExkg8Fk:ekN6W6okiroky7dRhhaDfcKlakgwk

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  2019e866ea1aa39e184b3153dd3367edccd09fc74af77d6231826b5cd850abf8N
- Size
  
  89KB
- MD5
  
  9136d9f9ec017464a320c505046994d0
- SHA1
  
  d53137751ada5b94ba0bdfa98089caa8cd14b8e1
- SHA256
  
  2019e866ea1aa39e184b3153dd3367edccd09fc74af77d6231826b5cd850abf8
- SHA512
  
  8ce03655674b905db390811ba3aac9384a16b3182b59e54184e382a22d3951f177e6fd78345348ce3157d0af42d2459eb25b97184985bb45ddfad36bbbbc78bf
- SSDEEP
  
  1536:LqkN6W6HtCSZiaQhviSwkTS1Mzw/eveLE53y4M+t8lVq4haDqqcKlExkg8Fk:ekN6W6okiroky7dRhhaDfcKlakgwk
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence