7125fb3cdb79b68c193d937839f422007d43f557b01cc2b680202cffbe93ab32 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7125fb3cdb79b68c193d937839f422007d43f557b01cc2b680202cffbe93ab32N
Size

386KB
Sample

241010-jn469axbqp
MD5

d1ae2637775e6999110aed3c3c4f4c40
SHA1

292514e39af4d09b9c063f4cc6c7be12d76144e9
SHA256

7125fb3cdb79b68c193d937839f422007d43f557b01cc2b680202cffbe93ab32
SHA512

1f3d77f0dc3ba4243735e80a434aecf07418016fab44d56d77c56eb6d58431dac5529a5411b5b98c177f2d44d72bba0deff2a1fcc3081568ac7144399dca8eae
SSDEEP

12288:uEUcl5lwQZ7287xmPFRkfJg9qwQZ7287xmP:bllvZZ/aFKm9qZZ/a

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7125fb3cdb79b68c193d937839f422007d43f557b01cc2b680202cffbe93ab32N
- Size
  
  386KB
- MD5
  
  d1ae2637775e6999110aed3c3c4f4c40
- SHA1
  
  292514e39af4d09b9c063f4cc6c7be12d76144e9
- SHA256
  
  7125fb3cdb79b68c193d937839f422007d43f557b01cc2b680202cffbe93ab32
- SHA512
  
  1f3d77f0dc3ba4243735e80a434aecf07418016fab44d56d77c56eb6d58431dac5529a5411b5b98c177f2d44d72bba0deff2a1fcc3081568ac7144399dca8eae
- SSDEEP
  
  12288:uEUcl5lwQZ7287xmPFRkfJg9qwQZ7287xmP:bllvZZ/aFKm9qZZ/a
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence