af7497e06fa2431b5ed6159be6de28ae0b4c1fb7be35d753cc34a5e9dc5ce0e7 | Triage

Sharing

General

Target

af7497e06fa2431b5ed6159be6de28ae0b4c1fb7be35d753cc34a5e9dc5ce0e7N
Size

89KB
Sample

241002-btdmgstgjg
MD5

c23fc9a2dd5e676942df0c1164c08a90
SHA1

e46f3d23b0b91f7553477d9255b3dd370a88d871
SHA256

af7497e06fa2431b5ed6159be6de28ae0b4c1fb7be35d753cc34a5e9dc5ce0e7
SHA512

87882f8a0006a41ce36c568d1dcd4e3464b659c32dc9f9468e187a9d15f6105de574695b7d3f06572b008140b47898a7c82a39e68f13e1d8a2d09b087421f118
SSDEEP

1536:FuANcNv+JEzM7b70OkPtzqGxWzhXgzy99rSBBnUC1rsnDc1lExkg8Fk:FuQcNKEz2bYOTwYGy90BBnL1Ac1lakgN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  af7497e06fa2431b5ed6159be6de28ae0b4c1fb7be35d753cc34a5e9dc5ce0e7N
- Size
  
  89KB
- MD5
  
  c23fc9a2dd5e676942df0c1164c08a90
- SHA1
  
  e46f3d23b0b91f7553477d9255b3dd370a88d871
- SHA256
  
  af7497e06fa2431b5ed6159be6de28ae0b4c1fb7be35d753cc34a5e9dc5ce0e7
- SHA512
  
  87882f8a0006a41ce36c568d1dcd4e3464b659c32dc9f9468e187a9d15f6105de574695b7d3f06572b008140b47898a7c82a39e68f13e1d8a2d09b087421f118
- SSDEEP
  
  1536:FuANcNv+JEzM7b70OkPtzqGxWzhXgzy99rSBBnUC1rsnDc1lExkg8Fk:FuQcNKEz2bYOTwYGy90BBnL1Ac1lakgN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence