746fc26d8ca11ef11f65d41b1680f9d1d518c0eb5296136aac90e8540fcf925a | Triage

Sharing

General

Target

746fc26d8ca11ef11f65d41b1680f9d1d518c0eb5296136aac90e8540fcf925a
Size

439KB
Sample

241122-a98xws1kds
MD5

6966929e0bd94917051c1b42c903fdab
SHA1

781536a95c56504927d9ef8a2cba8f4eef6b90bb
SHA256

746fc26d8ca11ef11f65d41b1680f9d1d518c0eb5296136aac90e8540fcf925a
SHA512

0e76a73f132580a41cee7413f806a245d73c30f3ab69a41842bced44a586486e4f3714756227c53611ee88585523ae3f1edc75d5d175e375bd3da8d2e6e6a3fe
SSDEEP

12288:tQaFqfPeKm2OPeKm22Vtp90NtmVtp90NtXONtc:HFApEkpEYc

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  746fc26d8ca11ef11f65d41b1680f9d1d518c0eb5296136aac90e8540fcf925a
- Size
  
  439KB
- MD5
  
  6966929e0bd94917051c1b42c903fdab
- SHA1
  
  781536a95c56504927d9ef8a2cba8f4eef6b90bb
- SHA256
  
  746fc26d8ca11ef11f65d41b1680f9d1d518c0eb5296136aac90e8540fcf925a
- SHA512
  
  0e76a73f132580a41cee7413f806a245d73c30f3ab69a41842bced44a586486e4f3714756227c53611ee88585523ae3f1edc75d5d175e375bd3da8d2e6e6a3fe
- SSDEEP
  
  12288:tQaFqfPeKm2OPeKm22Vtp90NtmVtp90NtXONtc:HFApEkpEYc
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence