71149fafa6ea26545d5c38e64d8c06f3667a388bdfcc0a751fe5efa19086e701 | Triage

Sharing

General

Target

71149fafa6ea26545d5c38e64d8c06f3667a388bdfcc0a751fe5efa19086e701
Size

318KB
Sample

241122-a9pt1s1kct
MD5

a4a26a3d74962a84f674f7b3519084a9
SHA1

06a99b50864b5fbc4395abc9b7c9bc51f8a0b673
SHA256

71149fafa6ea26545d5c38e64d8c06f3667a388bdfcc0a751fe5efa19086e701
SHA512

a07fe3dd5358ae132e6a50f1ee0c793287b2d3a6bcaa5691543c56df201f0d0661ade49c27f5e4f5aa5ecbced3ce72237fb9eebcc070e4cb0642213c54e23768
SSDEEP

6144:BLLTE5V8cdxvyQRVEQHdMcm4FmowdHoS7c5cm4FmowdHoSrNF9xRVEQHd4:lTE5V8KR9O4wFHoS04wFHoSrZx8

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  71149fafa6ea26545d5c38e64d8c06f3667a388bdfcc0a751fe5efa19086e701
- Size
  
  318KB
- MD5
  
  a4a26a3d74962a84f674f7b3519084a9
- SHA1
  
  06a99b50864b5fbc4395abc9b7c9bc51f8a0b673
- SHA256
  
  71149fafa6ea26545d5c38e64d8c06f3667a388bdfcc0a751fe5efa19086e701
- SHA512
  
  a07fe3dd5358ae132e6a50f1ee0c793287b2d3a6bcaa5691543c56df201f0d0661ade49c27f5e4f5aa5ecbced3ce72237fb9eebcc070e4cb0642213c54e23768
- SSDEEP
  
  6144:BLLTE5V8cdxvyQRVEQHdMcm4FmowdHoS7c5cm4FmowdHoSrNF9xRVEQHd4:lTE5V8KR9O4wFHoS04wFHoSrZx8
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence