93a2d60d1f23cf458e5ec7452860ba441f327e838f71f72f79bab05fac8b9fce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93a2d60d1f23cf458e5ec7452860ba441f327e838f71f72f79bab05fac8b9fce
Size

56KB
Sample

240928-adghrswgjp
MD5

efeb038ee842b9dd81aa2f8e9e8a5f08
SHA1

855b6f24ff4da2d12e60699ef542d7ff48274cd7
SHA256

93a2d60d1f23cf458e5ec7452860ba441f327e838f71f72f79bab05fac8b9fce
SHA512

0a6cb0ef977749c097e73364505fc91d4a7ea6f27cdfe2cb94dc1c9f7c3db03cf84a67f2a0ef316328ed878e7047d4253316389765a84f3b5df149e85e4b3ac2
SSDEEP

1536:l6kqicaKHAfteFOlASkUPtGcR4Zxz8t1leFTfN:Qi/KHXFOzvPBK8eFjN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  93a2d60d1f23cf458e5ec7452860ba441f327e838f71f72f79bab05fac8b9fce
- Size
  
  56KB
- MD5
  
  efeb038ee842b9dd81aa2f8e9e8a5f08
- SHA1
  
  855b6f24ff4da2d12e60699ef542d7ff48274cd7
- SHA256
  
  93a2d60d1f23cf458e5ec7452860ba441f327e838f71f72f79bab05fac8b9fce
- SHA512
  
  0a6cb0ef977749c097e73364505fc91d4a7ea6f27cdfe2cb94dc1c9f7c3db03cf84a67f2a0ef316328ed878e7047d4253316389765a84f3b5df149e85e4b3ac2
- SSDEEP
  
  1536:l6kqicaKHAfteFOlASkUPtGcR4Zxz8t1leFTfN:Qi/KHXFOzvPBK8eFjN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence