a6f511e94f4c921813dadad9700a289a24b3af393a6bc0a4b367d555cd87740d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a6f511e94f4c921813dadad9700a289a24b3af393a6bc0a4b367d555cd87740dN
Size

93KB
Sample

240930-aqjhwsxglk
MD5

afd12ef5cbfcf01922def0f6c952d890
SHA1

6f9a336b33f683e4163d0d26477db77b3a55e55a
SHA256

a6f511e94f4c921813dadad9700a289a24b3af393a6bc0a4b367d555cd87740d
SHA512

4f585d14cd1a4e2d808936a28f44735f66a3321721b400dc8cdc8d389f4ae95db22955deea390c510046018651f21c069d66cf23c7851127329f7a12fdce1e9f
SSDEEP

1536:dQBPl37an0jGfxNxe0tmqa9eBjTkZusRQVRkRLJzeLD9N0iQGRNQR8RyV+32rR:dQGA+Not9+wZFeVSJdEN0s4WE+3K

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a6f511e94f4c921813dadad9700a289a24b3af393a6bc0a4b367d555cd87740dN
- Size
  
  93KB
- MD5
  
  afd12ef5cbfcf01922def0f6c952d890
- SHA1
  
  6f9a336b33f683e4163d0d26477db77b3a55e55a
- SHA256
  
  a6f511e94f4c921813dadad9700a289a24b3af393a6bc0a4b367d555cd87740d
- SHA512
  
  4f585d14cd1a4e2d808936a28f44735f66a3321721b400dc8cdc8d389f4ae95db22955deea390c510046018651f21c069d66cf23c7851127329f7a12fdce1e9f
- SSDEEP
  
  1536:dQBPl37an0jGfxNxe0tmqa9eBjTkZusRQVRkRLJzeLD9N0iQGRNQR8RyV+32rR:dQGA+Not9+wZFeVSJdEN0s4WE+3K
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence