89171e1be171e3d6a16fc43c52cca6c82df8fcf93df9e6ab55407286f2faa735 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89171e1be171e3d6a16fc43c52cca6c82df8fcf93df9e6ab55407286f2faa735
Size

59KB
Sample

241015-b1rgxsxclh
MD5

5ae2d4c4b7710af05dc8b5975c3e2919
SHA1

0dc64ea300344fd3faca5c07f83ebb858edf1cf2
SHA256

89171e1be171e3d6a16fc43c52cca6c82df8fcf93df9e6ab55407286f2faa735
SHA512

3bcfa11d5c4fdd4d455b83ada7fca1bbc2ae64f7118d89cb0f151afac829b6978420cf8f4c4921c623d01266199c6ea74f8025e6096e11646d7671bb1cd43e68
SSDEEP

1536:QBpfIcTPxwk+EpEgfsnlk5A/2D2x+tutVK/oiVBhvaRZ+PzMAXZJcR+p7/2LHO:Qixgfsnlk5A/2D2IyVK/oiVBhKNAXZ8G

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  89171e1be171e3d6a16fc43c52cca6c82df8fcf93df9e6ab55407286f2faa735
- Size
  
  59KB
- MD5
  
  5ae2d4c4b7710af05dc8b5975c3e2919
- SHA1
  
  0dc64ea300344fd3faca5c07f83ebb858edf1cf2
- SHA256
  
  89171e1be171e3d6a16fc43c52cca6c82df8fcf93df9e6ab55407286f2faa735
- SHA512
  
  3bcfa11d5c4fdd4d455b83ada7fca1bbc2ae64f7118d89cb0f151afac829b6978420cf8f4c4921c623d01266199c6ea74f8025e6096e11646d7671bb1cd43e68
- SSDEEP
  
  1536:QBpfIcTPxwk+EpEgfsnlk5A/2D2x+tutVK/oiVBhvaRZ+PzMAXZJcR+p7/2LHO:Qixgfsnlk5A/2D2IyVK/oiVBhKNAXZ8G
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence