42584d7ef6f831b6870a1107b56b3e34f6f7c9f5a34b23fbaa674fa7a552c182 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42584d7ef6f831b6870a1107b56b3e34f6f7c9f5a34b23fbaa674fa7a552c182N
Size

88KB
Sample

241018-hl2gxawbqq
MD5

accc09c8a865af00fb994ee31f2aa450
SHA1

f31c7d6d185566f5317bab1bee7360751c2b73a3
SHA256

42584d7ef6f831b6870a1107b56b3e34f6f7c9f5a34b23fbaa674fa7a552c182
SHA512

10de4efc0da3aea635e62a5f5aaed314e602008706cb11931d85e36a11ab1aa653e87fb0c723980ee12e0b31a774fd1f44b62c935e6b795936d7419499b9de71
SSDEEP

1536:3AbCO4okdZQmc1DVcb9raiZVgZywFL8QOVXtE1ukVd71rFZO7+90vi:QbrDVq9rFZVgZZLi9EIIJ15ZO7Va

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  42584d7ef6f831b6870a1107b56b3e34f6f7c9f5a34b23fbaa674fa7a552c182N
- Size
  
  88KB
- MD5
  
  accc09c8a865af00fb994ee31f2aa450
- SHA1
  
  f31c7d6d185566f5317bab1bee7360751c2b73a3
- SHA256
  
  42584d7ef6f831b6870a1107b56b3e34f6f7c9f5a34b23fbaa674fa7a552c182
- SHA512
  
  10de4efc0da3aea635e62a5f5aaed314e602008706cb11931d85e36a11ab1aa653e87fb0c723980ee12e0b31a774fd1f44b62c935e6b795936d7419499b9de71
- SSDEEP
  
  1536:3AbCO4okdZQmc1DVcb9raiZVgZywFL8QOVXtE1ukVd71rFZO7+90vi:QbrDVq9rFZVgZZLi9EIIJ15ZO7Va
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence