9524c51bbf2c26c4439edb873d1036a2689330068efb929f815a553add3adf31 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9524c51bbf2c26c4439edb873d1036a2689330068efb929f815a553add3adf31N
Size

80KB
Sample

241012-ls9zeayfpp
MD5

c1e4eccc7d7eaa46acc6bf7c614d3030
SHA1

64c2d1cffa1eb045ed1621be56e55c430a68e6ed
SHA256

9524c51bbf2c26c4439edb873d1036a2689330068efb929f815a553add3adf31
SHA512

ba0ef70f6c5870cce80f2a343566c42d0582767c5776e5463e4e7e7f16895756b67691826b043f8f03b409549c87de7a8e60453f4b5cc607e0b5260a01c75a92
SSDEEP

1536:rLKmNZQpgAwrXNkYNhOF5YMkhohBE8VGh:vKmNZg7T3UAEQGh

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  9524c51bbf2c26c4439edb873d1036a2689330068efb929f815a553add3adf31N
- Size
  
  80KB
- MD5
  
  c1e4eccc7d7eaa46acc6bf7c614d3030
- SHA1
  
  64c2d1cffa1eb045ed1621be56e55c430a68e6ed
- SHA256
  
  9524c51bbf2c26c4439edb873d1036a2689330068efb929f815a553add3adf31
- SHA512
  
  ba0ef70f6c5870cce80f2a343566c42d0582767c5776e5463e4e7e7f16895756b67691826b043f8f03b409549c87de7a8e60453f4b5cc607e0b5260a01c75a92
- SSDEEP
  
  1536:rLKmNZQpgAwrXNkYNhOF5YMkhohBE8VGh:vKmNZg7T3UAEQGh
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence