231a8820ead91bdd4b7802206b3ea615aa00c2765770ef80351bbb99aee0fd9d | Triage

Sharing

General

Target

231a8820ead91bdd4b7802206b3ea615aa00c2765770ef80351bbb99aee0fd9dN
Size

56KB
Sample

240921-dy5mwashkl
MD5

1bc4d6573f42ce73c78a0457ebf9b7c0
SHA1

f2b8799abf69e05e26d2554e0f2a4857fcb6cbd2
SHA256

231a8820ead91bdd4b7802206b3ea615aa00c2765770ef80351bbb99aee0fd9d
SHA512

87e06a8d5c4b993672417b67164086ffadfc16f902831f2f25fccf2e234fde5564d1455705284c25f5d29b003e960b65f3b22b945c773ab40397d1e15b4dd6e8
SSDEEP

768:+TaFm9NIAegdNhNFjyvEAUFBSLaqbP7XaNJlR4j9XdmzRy/1H5TufXdnh:+CqIIdNhfjR5BSL/z7q5R4j/mzRwA

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  231a8820ead91bdd4b7802206b3ea615aa00c2765770ef80351bbb99aee0fd9dN
- Size
  
  56KB
- MD5
  
  1bc4d6573f42ce73c78a0457ebf9b7c0
- SHA1
  
  f2b8799abf69e05e26d2554e0f2a4857fcb6cbd2
- SHA256
  
  231a8820ead91bdd4b7802206b3ea615aa00c2765770ef80351bbb99aee0fd9d
- SHA512
  
  87e06a8d5c4b993672417b67164086ffadfc16f902831f2f25fccf2e234fde5564d1455705284c25f5d29b003e960b65f3b22b945c773ab40397d1e15b4dd6e8
- SSDEEP
  
  768:+TaFm9NIAegdNhNFjyvEAUFBSLaqbP7XaNJlR4j9XdmzRy/1H5TufXdnh:+CqIIdNhfjR5BSL/z7q5R4j/mzRwA
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence