f299afd6b93c0655c54e533aa0d2a9dedcf79d1ddcd6a82e805dc711f0165cc2 | Triage

Sharing

General

Target

f299afd6b93c0655c54e533aa0d2a9dedcf79d1ddcd6a82e805dc711f0165cc2
Size

96KB
Sample

241122-gcnn1s1mgj
MD5

839463c0838ffdc050c3ceff8331ad54
SHA1

3893ef21d45c281effc55b5cce5e658a00b8a349
SHA256

f299afd6b93c0655c54e533aa0d2a9dedcf79d1ddcd6a82e805dc711f0165cc2
SHA512

9239280689f58d2a727aad1a3cdc5df25bb068bb8da60e0b199616ad377b3e1bf13a597d2139ff3f5c3e5300e3aef6262514eb8ad5894e48d35561cbedfdbea3
SSDEEP

1536:t+SG7aDdX7O8+xtZRKoxUneTZeMxkL1WV1jFlQkN1AerDtZar3vhD:tSm5OTRQneoK1jFlJ1AerDtsr3vhD

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f299afd6b93c0655c54e533aa0d2a9dedcf79d1ddcd6a82e805dc711f0165cc2
- Size
  
  96KB
- MD5
  
  839463c0838ffdc050c3ceff8331ad54
- SHA1
  
  3893ef21d45c281effc55b5cce5e658a00b8a349
- SHA256
  
  f299afd6b93c0655c54e533aa0d2a9dedcf79d1ddcd6a82e805dc711f0165cc2
- SHA512
  
  9239280689f58d2a727aad1a3cdc5df25bb068bb8da60e0b199616ad377b3e1bf13a597d2139ff3f5c3e5300e3aef6262514eb8ad5894e48d35561cbedfdbea3
- SSDEEP
  
  1536:t+SG7aDdX7O8+xtZRKoxUneTZeMxkL1WV1jFlQkN1AerDtZar3vhD:tSm5OTRQneoK1jFlJ1AerDtsr3vhD
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence