1784c755815175ac3995a98239f5d216a805a738aa30e5cf9743b15c2b9a856e | Triage

Sharing

General

Target

1784c755815175ac3995a98239f5d216a805a738aa30e5cf9743b15c2b9a856eN
Size

88KB
Sample

240921-fs9qraweph
MD5

3c67c4f8033e1b4eeb2e91b03dd6be30
SHA1

dee9ddf8d30eaadb22466106968bf00d7a7b9103
SHA256

1784c755815175ac3995a98239f5d216a805a738aa30e5cf9743b15c2b9a856e
SHA512

2cd963bf949fd202bb0e5058da3d65f99a4aed82591b589cae1f926e9512f354ad257025951c8ec8cebb45a9f8daa71b0c17b90a89b88750c5ed92801cd17382
SSDEEP

1536:UxoDAOd5rGzs+OtKvs6k+4MHA9MDZZawFL8QOVXtE1ukVd71rFZO7+90vT:QAFjrqO0vs6T4MdZZhLi9EIIJ15ZO7Vr

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1784c755815175ac3995a98239f5d216a805a738aa30e5cf9743b15c2b9a856eN
- Size
  
  88KB
- MD5
  
  3c67c4f8033e1b4eeb2e91b03dd6be30
- SHA1
  
  dee9ddf8d30eaadb22466106968bf00d7a7b9103
- SHA256
  
  1784c755815175ac3995a98239f5d216a805a738aa30e5cf9743b15c2b9a856e
- SHA512
  
  2cd963bf949fd202bb0e5058da3d65f99a4aed82591b589cae1f926e9512f354ad257025951c8ec8cebb45a9f8daa71b0c17b90a89b88750c5ed92801cd17382
- SSDEEP
  
  1536:UxoDAOd5rGzs+OtKvs6k+4MHA9MDZZawFL8QOVXtE1ukVd71rFZO7+90vT:QAFjrqO0vs6T4MdZZhLi9EIIJ15ZO7Vr
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence