d988d8551a6a40709f03b633244f7b25619eea28d37c91f525d57800f3441618 | Triage

Sharing

General

Target

97fa4aeb113afa528382cc4300602490_exe32.exe
Size

128KB
Sample

231015-yecszafa63
MD5

97fa4aeb113afa528382cc4300602490
SHA1

9b993fd1ae945e096bc68eee68bf980fb7ce1e56
SHA256

d988d8551a6a40709f03b633244f7b25619eea28d37c91f525d57800f3441618
SHA512

d5810247e6b8364f34da1cc44f2bf727f78cc8e9d8e2122bfe2ec9817a9b760270dd37de508a95739dc9156cfd95ffc6462f8b57aea495cb9043f86d19e6322f
SSDEEP

3072:NkQNZHkmBgAPKADegSJdEN0s4WE+3S9pui6yYPaI7DX:N7ZHsAPKJZENm+3Mpui6yYPaI/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  97fa4aeb113afa528382cc4300602490_exe32.exe
- Size
  
  128KB
- MD5
  
  97fa4aeb113afa528382cc4300602490
- SHA1
  
  9b993fd1ae945e096bc68eee68bf980fb7ce1e56
- SHA256
  
  d988d8551a6a40709f03b633244f7b25619eea28d37c91f525d57800f3441618
- SHA512
  
  d5810247e6b8364f34da1cc44f2bf727f78cc8e9d8e2122bfe2ec9817a9b760270dd37de508a95739dc9156cfd95ffc6462f8b57aea495cb9043f86d19e6322f
- SSDEEP
  
  3072:NkQNZHkmBgAPKADegSJdEN0s4WE+3S9pui6yYPaI7DX:N7ZHsAPKJZENm+3Mpui6yYPaI/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2