1377aaa72e78479a43e388d071480bf538b6a6574374e2a1529b9782d2974ca2 | Triage

Sharing

General

Target

1377aaa72e78479a43e388d071480bf538b6a6574374e2a1529b9782d2974ca2
Size

78KB
Sample

241005-xleqgathra
MD5

861c41d2f482a205e06eadbbf006108f
SHA1

21998879e898286bfd8a76552fd6c560af5d0ae4
SHA256

1377aaa72e78479a43e388d071480bf538b6a6574374e2a1529b9782d2974ca2
SHA512

5343c56158aa3e14096af27f634c9ab27ed57101fbadb9c901807eec05ffb63fbff47458326ccf8eb7043fd9f0c23e33406ceded3ab5849d71bee8bb110dc9e1
SSDEEP

1536:KRvgP0t0D48ROEMr8wymiVBN+zL20gJi1ie:QgP0O7cEB2iVBgzL20WKt

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1377aaa72e78479a43e388d071480bf538b6a6574374e2a1529b9782d2974ca2
- Size
  
  78KB
- MD5
  
  861c41d2f482a205e06eadbbf006108f
- SHA1
  
  21998879e898286bfd8a76552fd6c560af5d0ae4
- SHA256
  
  1377aaa72e78479a43e388d071480bf538b6a6574374e2a1529b9782d2974ca2
- SHA512
  
  5343c56158aa3e14096af27f634c9ab27ed57101fbadb9c901807eec05ffb63fbff47458326ccf8eb7043fd9f0c23e33406ceded3ab5849d71bee8bb110dc9e1
- SSDEEP
  
  1536:KRvgP0t0D48ROEMr8wymiVBN+zL20gJi1ie:QgP0O7cEB2iVBgzL20WKt
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence