77065d7e7f96c3c5b58835cf0c9cd5140f980f83f9c6c806f613647a838a4fde | Triage

Sharing

General

Target

77065d7e7f96c3c5b58835cf0c9cd5140f980f83f9c6c806f613647a838a4fdeN
Size

479KB
Sample

241013-ab8t8sshlm
MD5

add2d455bc2c291bc6b6c714b481fa70
SHA1

ee41833800f3807d8f865d0018670f8360d5df6c
SHA256

77065d7e7f96c3c5b58835cf0c9cd5140f980f83f9c6c806f613647a838a4fde
SHA512

8ec7b7c6c2e40b1fef874f983280af148824314809961a0ca12aadbc8a410b15f155ff336e2e7fc9feacb9add07868b2ecc5dc72d775014284129da0e44d6717
SSDEEP

6144:QOrk722mIRJ6EQnT2leTLgNPx33fpu2leTLg:QOa2sRJ6EQ6Q2drQ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  77065d7e7f96c3c5b58835cf0c9cd5140f980f83f9c6c806f613647a838a4fdeN
- Size
  
  479KB
- MD5
  
  add2d455bc2c291bc6b6c714b481fa70
- SHA1
  
  ee41833800f3807d8f865d0018670f8360d5df6c
- SHA256
  
  77065d7e7f96c3c5b58835cf0c9cd5140f980f83f9c6c806f613647a838a4fde
- SHA512
  
  8ec7b7c6c2e40b1fef874f983280af148824314809961a0ca12aadbc8a410b15f155ff336e2e7fc9feacb9add07868b2ecc5dc72d775014284129da0e44d6717
- SSDEEP
  
  6144:QOrk722mIRJ6EQnT2leTLgNPx33fpu2leTLg:QOa2sRJ6EQ6Q2drQ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence