f1198e82e7009c84144c9699b70025738a49fd4810af6bab35f88866006e9a34 | Triage

Sharing

General

Target

f1198e82e7009c84144c9699b70025738a49fd4810af6bab35f88866006e9a34N
Size

78KB
Sample

241017-z1bcpszcll
MD5

9b65a18f80955aa5093da4215f6afaa0
SHA1

11ef2d592ac1d7058eb1c1d2f4e8d1dc2164c4b8
SHA256

f1198e82e7009c84144c9699b70025738a49fd4810af6bab35f88866006e9a34
SHA512

f09546f2f9da1cf0151f7799c2e9d3db1fe617b05e5fc4b92616d8b1c2c1abe17cbd612500b8e27338893e3a40e4997aa795786347b7746a92ee21c26859a3c6
SSDEEP

1536:h1kaB/rzUe+/aDdj5qRilykDbXDJYe7stHiVcN+zL20gJi1ie:h1kaBzU41+GbTJsliVcgzL20WKt

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f1198e82e7009c84144c9699b70025738a49fd4810af6bab35f88866006e9a34N
- Size
  
  78KB
- MD5
  
  9b65a18f80955aa5093da4215f6afaa0
- SHA1
  
  11ef2d592ac1d7058eb1c1d2f4e8d1dc2164c4b8
- SHA256
  
  f1198e82e7009c84144c9699b70025738a49fd4810af6bab35f88866006e9a34
- SHA512
  
  f09546f2f9da1cf0151f7799c2e9d3db1fe617b05e5fc4b92616d8b1c2c1abe17cbd612500b8e27338893e3a40e4997aa795786347b7746a92ee21c26859a3c6
- SSDEEP
  
  1536:h1kaB/rzUe+/aDdj5qRilykDbXDJYe7stHiVcN+zL20gJi1ie:h1kaBzU41+GbTJsliVcgzL20WKt
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence