129683d10c705bb9de8f8b343145e57e108b79ea420950fbd14391a518f188b0 | Triage

Sharing

General

Target

129683d10c705bb9de8f8b343145e57e108b79ea420950fbd14391a518f188b0
Size

56KB
Sample

241120-y3qpqstaqq
MD5

6efa57aba3cd4d30c46d1e3574855cda
SHA1

7d57bd4f02e53ab53af2a98c532aa541720cc6ee
SHA256

129683d10c705bb9de8f8b343145e57e108b79ea420950fbd14391a518f188b0
SHA512

cd3d27f7bebc7a3dee036a0a07339896fda17d7626f7c9a9799cf0144498be722d1b16b3894bcad4ca3802618ab898cf489337ab2a4124df2f1c954e9625af3d
SSDEEP

1536:+EMyJYFD/e5UxB8Ho2KkJEfhRVaESE5DfKUjXUbeZy:dJIRwESE5DfpDZy

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  129683d10c705bb9de8f8b343145e57e108b79ea420950fbd14391a518f188b0
- Size
  
  56KB
- MD5
  
  6efa57aba3cd4d30c46d1e3574855cda
- SHA1
  
  7d57bd4f02e53ab53af2a98c532aa541720cc6ee
- SHA256
  
  129683d10c705bb9de8f8b343145e57e108b79ea420950fbd14391a518f188b0
- SHA512
  
  cd3d27f7bebc7a3dee036a0a07339896fda17d7626f7c9a9799cf0144498be722d1b16b3894bcad4ca3802618ab898cf489337ab2a4124df2f1c954e9625af3d
- SSDEEP
  
  1536:+EMyJYFD/e5UxB8Ho2KkJEfhRVaESE5DfKUjXUbeZy:dJIRwESE5DfpDZy
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence