a4adf532b3080c0f3f8490abe156a346cfc6c870ba0fa0b706cc39ae3c1ccc93 | Triage

Sharing

General

Target

a4adf532b3080c0f3f8490abe156a346cfc6c870ba0fa0b706cc39ae3c1ccc93N
Size

64KB
Sample

241014-z7gs3axbkb
MD5

c26f23109e3e1c76eea19bd020de14f0
SHA1

1abc713cc27aa06a9563965666dc44a9466fb341
SHA256

a4adf532b3080c0f3f8490abe156a346cfc6c870ba0fa0b706cc39ae3c1ccc93
SHA512

0aff68688bbc4340863f5225624bb0e8ed101017ba4d8703b574d5370f6096d941bf96fd9d1260b74db6be4028bb923311391c6fcfde547fa6de9062d3a0712e
SSDEEP

1536:742bJFfeHIFmbMFDPrfjvLkbHDPrXTf7njvL3z/bHDPrXTf7njvL3z/bHDPrXTfK:7LbnHmAFDPrfjvLkbHDPrXTf7njvL3zy

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a4adf532b3080c0f3f8490abe156a346cfc6c870ba0fa0b706cc39ae3c1ccc93N
- Size
  
  64KB
- MD5
  
  c26f23109e3e1c76eea19bd020de14f0
- SHA1
  
  1abc713cc27aa06a9563965666dc44a9466fb341
- SHA256
  
  a4adf532b3080c0f3f8490abe156a346cfc6c870ba0fa0b706cc39ae3c1ccc93
- SHA512
  
  0aff68688bbc4340863f5225624bb0e8ed101017ba4d8703b574d5370f6096d941bf96fd9d1260b74db6be4028bb923311391c6fcfde547fa6de9062d3a0712e
- SSDEEP
  
  1536:742bJFfeHIFmbMFDPrfjvLkbHDPrXTf7njvL3z/bHDPrXTf7njvL3z/bHDPrXTfK:7LbnHmAFDPrfjvLkbHDPrXTf7njvL3zy
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence