72b806b8e0e237b44ba972f632cf2ab8e72f067e5718dbe0a22b5ef1b5f7802a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

72b806b8e0e237b44ba972f632cf2ab8e72f067e5718dbe0a22b5ef1b5f7802aN
Size

89KB
Sample

241003-dkqa2avflc
MD5

56f484396ffc93b4ba03ad3756601950
SHA1

f60ba9b800d9d2dc1cba14b59c194f5b9fe89600
SHA256

72b806b8e0e237b44ba972f632cf2ab8e72f067e5718dbe0a22b5ef1b5f7802a
SHA512

a2cd19bf68c9ca82feac5405ed2fc25838df8275a8df73d7110f761838cc0b2510a3877c756335d49741e001cd456911820eb6d2864aa451264f39a017440553
SSDEEP

1536:Bt6VPxxBDmkwYPQK8SXxokEN5lsunPw1kTuCkSUYTQlcPlExkg8Fk:Kt7BDTXPQKnxjEN5lsSPw1jqccPlakgN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  72b806b8e0e237b44ba972f632cf2ab8e72f067e5718dbe0a22b5ef1b5f7802aN
- Size
  
  89KB
- MD5
  
  56f484396ffc93b4ba03ad3756601950
- SHA1
  
  f60ba9b800d9d2dc1cba14b59c194f5b9fe89600
- SHA256
  
  72b806b8e0e237b44ba972f632cf2ab8e72f067e5718dbe0a22b5ef1b5f7802a
- SHA512
  
  a2cd19bf68c9ca82feac5405ed2fc25838df8275a8df73d7110f761838cc0b2510a3877c756335d49741e001cd456911820eb6d2864aa451264f39a017440553
- SSDEEP
  
  1536:Bt6VPxxBDmkwYPQK8SXxokEN5lsunPw1kTuCkSUYTQlcPlExkg8Fk:Kt7BDTXPQKnxjEN5lsSPw1jqccPlakgN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence