aa5d201e36d4501008f13b88da4ed7315dea3837036c892c556f4371a89c637a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa5d201e36d4501008f13b88da4ed7315dea3837036c892c556f4371a89c637aN
Size

89KB
Sample

241014-bapkmsthme
MD5

d15d6432297a74f760a9f49888e48c70
SHA1

9049821196adcb10bdc1ea3e0f2896e9b20be894
SHA256

aa5d201e36d4501008f13b88da4ed7315dea3837036c892c556f4371a89c637a
SHA512

792d336735448ca6d0e3a5ecdbb9fa70495ecc292539d6828d0a42ae5724006ed01530477cd14853c7b60e90f9a230f806a7ef96fb382d3f18f6ec9fee87098b
SSDEEP

1536:t0m8DR72np5GfUYrl8p8d5uxPugTyRGXiCnMFFecGelExkg8Fk:biAGswl8p83oPug+4Xi3wc/lakgwk

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  aa5d201e36d4501008f13b88da4ed7315dea3837036c892c556f4371a89c637aN
- Size
  
  89KB
- MD5
  
  d15d6432297a74f760a9f49888e48c70
- SHA1
  
  9049821196adcb10bdc1ea3e0f2896e9b20be894
- SHA256
  
  aa5d201e36d4501008f13b88da4ed7315dea3837036c892c556f4371a89c637a
- SHA512
  
  792d336735448ca6d0e3a5ecdbb9fa70495ecc292539d6828d0a42ae5724006ed01530477cd14853c7b60e90f9a230f806a7ef96fb382d3f18f6ec9fee87098b
- SSDEEP
  
  1536:t0m8DR72np5GfUYrl8p8d5uxPugTyRGXiCnMFFecGelExkg8Fk:biAGswl8p83oPug+4Xi3wc/lakgwk
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence