9feee640527849e5ad49ea83446426396e22ecccafd73381ee6b3f51358014ca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9feee640527849e5ad49ea83446426396e22ecccafd73381ee6b3f51358014caN
Size

59KB
Sample

241005-ws3v7sycnk
MD5

954047d6243efeb163ef3a0e385f6b50
SHA1

632c5a24f68c61d2ea2f69a771beaaa9071ea66c
SHA256

9feee640527849e5ad49ea83446426396e22ecccafd73381ee6b3f51358014ca
SHA512

f312e1737e69a969c4669958daf72c5879c97755e37d0d4d035b48290bb5ffcd5ac7df5b113666904b8091bef7778f14b797e6d34707f63249801aee4b293ae4
SSDEEP

768:RhZXNpeUhy20FqD2XaDdoh8On5O7LmHCyZ9DCQ2nI7jol92p/1H5QwXdnhfXaXdh:fAqjmHzDCQ2I7jO92LfO

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  9feee640527849e5ad49ea83446426396e22ecccafd73381ee6b3f51358014caN
- Size
  
  59KB
- MD5
  
  954047d6243efeb163ef3a0e385f6b50
- SHA1
  
  632c5a24f68c61d2ea2f69a771beaaa9071ea66c
- SHA256
  
  9feee640527849e5ad49ea83446426396e22ecccafd73381ee6b3f51358014ca
- SHA512
  
  f312e1737e69a969c4669958daf72c5879c97755e37d0d4d035b48290bb5ffcd5ac7df5b113666904b8091bef7778f14b797e6d34707f63249801aee4b293ae4
- SSDEEP
  
  768:RhZXNpeUhy20FqD2XaDdoh8On5O7LmHCyZ9DCQ2nI7jol92p/1H5QwXdnhfXaXdh:fAqjmHzDCQ2I7jO92LfO
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence