80c0263eefeeaef9e9ff9f58c45424760f1b5202a926aca9c07bed17fee3f23e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

80c0263eefeeaef9e9ff9f58c45424760f1b5202a926aca9c07bed17fee3f23eN
Size

59KB
Sample

241006-ghblmsyaqh
MD5

692dfd5343c89285f761b98130d29760
SHA1

3fde788d0e484ffc26ab45b21ada23b8c78b25a3
SHA256

80c0263eefeeaef9e9ff9f58c45424760f1b5202a926aca9c07bed17fee3f23e
SHA512

65dca83810f17e78f3693fcfbceaf118f36309888657a541a535f07178394d36b0078b5b10458ea2fcbb402eac1968ca83312c3a1112079288d6a80c90ad1c1f
SSDEEP

768:yeA0TqkxAgb6APlZPZ3yEMaQvdrjICJkFtXoRsLZs0NN+zXds1nPh6JIU2p/1H5W:9TqkxAgb6AsE50sVsICMPheIU2LPO

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  80c0263eefeeaef9e9ff9f58c45424760f1b5202a926aca9c07bed17fee3f23eN
- Size
  
  59KB
- MD5
  
  692dfd5343c89285f761b98130d29760
- SHA1
  
  3fde788d0e484ffc26ab45b21ada23b8c78b25a3
- SHA256
  
  80c0263eefeeaef9e9ff9f58c45424760f1b5202a926aca9c07bed17fee3f23e
- SHA512
  
  65dca83810f17e78f3693fcfbceaf118f36309888657a541a535f07178394d36b0078b5b10458ea2fcbb402eac1968ca83312c3a1112079288d6a80c90ad1c1f
- SSDEEP
  
  768:yeA0TqkxAgb6APlZPZ3yEMaQvdrjICJkFtXoRsLZs0NN+zXds1nPh6JIU2p/1H5W:9TqkxAgb6AsE50sVsICMPheIU2LPO
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence