d33177c378398cc4f309314600898aeaa449bf171611740226331022459a4648 | Triage

Sharing

General

Target

d33177c378398cc4f309314600898aeaa449bf171611740226331022459a4648N
Size

89KB
Sample

241002-h9ja8sxfre
MD5

b8580dda522a4485d06ddc016f8b8900
SHA1

a46ccdeb292bcbfe9fa4fe45983f2599c66544c6
SHA256

d33177c378398cc4f309314600898aeaa449bf171611740226331022459a4648
SHA512

61f0c00c7eac158f397a16683aacf15e6c0514362dc14ef9cb8fb4dde3731ddd76862fc5c828096d0af27d4e4a286d9c885aa0efdc5e4131eef422e172f3056c
SSDEEP

1536:HAqOeJ+Awbd0bwc7b8wiAN0WiLeUvFbY3SLYYKWhdSiQDm5Ai7OyzElaqqXNqc9a:bzJ+Z07fithVvFfLlrSiQDmmiqyznFsR

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d33177c378398cc4f309314600898aeaa449bf171611740226331022459a4648N
- Size
  
  89KB
- MD5
  
  b8580dda522a4485d06ddc016f8b8900
- SHA1
  
  a46ccdeb292bcbfe9fa4fe45983f2599c66544c6
- SHA256
  
  d33177c378398cc4f309314600898aeaa449bf171611740226331022459a4648
- SHA512
  
  61f0c00c7eac158f397a16683aacf15e6c0514362dc14ef9cb8fb4dde3731ddd76862fc5c828096d0af27d4e4a286d9c885aa0efdc5e4131eef422e172f3056c
- SSDEEP
  
  1536:HAqOeJ+Awbd0bwc7b8wiAN0WiLeUvFbY3SLYYKWhdSiQDm5Ai7OyzElaqqXNqc9a:bzJ+Z07fithVvFfLlrSiQDmmiqyznFsR
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence