9f5df43409e109d8ecfe5d6724dade7e388536f8f9ae5f9ae649b3aaceb56870 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9f5df43409e109d8ecfe5d6724dade7e388536f8f9ae5f9ae649b3aaceb56870N
Size

87KB
Sample

241005-llv7nssdjc
MD5

e56ae98794ccabfe4500cb723dab8e90
SHA1

6e894e3bcfafad77966cf09c33e4876f94f1e64f
SHA256

9f5df43409e109d8ecfe5d6724dade7e388536f8f9ae5f9ae649b3aaceb56870
SHA512

049640d1f2f732d93eda683b61cc32600acfe26fe060938fefc2fbbf0e12a607ca3c8ae894eaaf7b714cc389f9110d5239ba21311a9fc8f82170d1213c19ac1a
SSDEEP

1536:+06xgOTTmyWS7HUmvOFnU1iTfFlE+qQ/hjRQ4LRSRBDNrR0RVe7R6R8RPD2zx:+trmyPCnGiTfIQtemAnDlmbGcGFDex

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  9f5df43409e109d8ecfe5d6724dade7e388536f8f9ae5f9ae649b3aaceb56870N
- Size
  
  87KB
- MD5
  
  e56ae98794ccabfe4500cb723dab8e90
- SHA1
  
  6e894e3bcfafad77966cf09c33e4876f94f1e64f
- SHA256
  
  9f5df43409e109d8ecfe5d6724dade7e388536f8f9ae5f9ae649b3aaceb56870
- SHA512
  
  049640d1f2f732d93eda683b61cc32600acfe26fe060938fefc2fbbf0e12a607ca3c8ae894eaaf7b714cc389f9110d5239ba21311a9fc8f82170d1213c19ac1a
- SSDEEP
  
  1536:+06xgOTTmyWS7HUmvOFnU1iTfFlE+qQ/hjRQ4LRSRBDNrR0RVe7R6R8RPD2zx:+trmyPCnGiTfIQtemAnDlmbGcGFDex
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence