f1128b679411b8c845aaa19249ab8d678be9e4c679a8ab7ebec55b78462c3bef | Triage

Sharing

General

Target

f1128b679411b8c845aaa19249ab8d678be9e4c679a8ab7ebec55b78462c3bef
Size

89KB
Sample

241010-dq6j7swdre
MD5

bcef37df8269373361c3ef765b7ec00b
SHA1

900099a516609ce8efa6f03e33d1594f4baded23
SHA256

f1128b679411b8c845aaa19249ab8d678be9e4c679a8ab7ebec55b78462c3bef
SHA512

8b9bb5e50c6c7b2a3f38f4c5d61861879f673efc6bdb20256b7292f71371091237fde2a7bbf209522c2133517330484098a28d742c5c33ade533e82c483bdf3f
SSDEEP

1536:i0O4OsOF6O1HpnfnWUtijDYAYmLpDOcnvcBlExkg8F:i0+ffnWfUAT9DTcBlakgw

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f1128b679411b8c845aaa19249ab8d678be9e4c679a8ab7ebec55b78462c3bef
- Size
  
  89KB
- MD5
  
  bcef37df8269373361c3ef765b7ec00b
- SHA1
  
  900099a516609ce8efa6f03e33d1594f4baded23
- SHA256
  
  f1128b679411b8c845aaa19249ab8d678be9e4c679a8ab7ebec55b78462c3bef
- SHA512
  
  8b9bb5e50c6c7b2a3f38f4c5d61861879f673efc6bdb20256b7292f71371091237fde2a7bbf209522c2133517330484098a28d742c5c33ade533e82c483bdf3f
- SSDEEP
  
  1536:i0O4OsOF6O1HpnfnWUtijDYAYmLpDOcnvcBlExkg8F:i0+ffnWfUAT9DTcBlakgw
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence