fd127674bfc9cac6c0f2ef3566e4cbc27f91394e452d34d01738461bf4611ccc | Triage

Sharing

General

Target

fd127674bfc9cac6c0f2ef3566e4cbc27f91394e452d34d01738461bf4611ccc
Size

224KB
Sample

240929-fd62batbjh
MD5

e7125c5a85c5210f52799f08ebd0241e
SHA1

ddcb1c56b54f63c32ccbdc8277312ed8fb7ce2a7
SHA256

fd127674bfc9cac6c0f2ef3566e4cbc27f91394e452d34d01738461bf4611ccc
SHA512

7df5723b640dbd50e7ebccae1b6493f7218976be1ca53a3566e61782172c2155b8826400a5f5565952b56e0e5bc16b094792209abe00cbb0d70802b9cb327dc0
SSDEEP

6144:lCHTTou/fJTGua84rQD85k/hQO+zrWnAdqjeOpKff:sTTxl2rQg5W/+zrWAI5KH

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fd127674bfc9cac6c0f2ef3566e4cbc27f91394e452d34d01738461bf4611ccc
- Size
  
  224KB
- MD5
  
  e7125c5a85c5210f52799f08ebd0241e
- SHA1
  
  ddcb1c56b54f63c32ccbdc8277312ed8fb7ce2a7
- SHA256
  
  fd127674bfc9cac6c0f2ef3566e4cbc27f91394e452d34d01738461bf4611ccc
- SHA512
  
  7df5723b640dbd50e7ebccae1b6493f7218976be1ca53a3566e61782172c2155b8826400a5f5565952b56e0e5bc16b094792209abe00cbb0d70802b9cb327dc0
- SSDEEP
  
  6144:lCHTTou/fJTGua84rQD85k/hQO+zrWnAdqjeOpKff:sTTxl2rQg5W/+zrWAI5KH
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence