d4d962064670698c484709d739a6f6959658574365aee39435102eb6f984537a | Triage

Sharing

General

Target

b9b25a9e7db696b170a2d9591c62b520_exe32.exe
Size

368KB
Sample

231015-yfrnhseb3w
MD5

b9b25a9e7db696b170a2d9591c62b520
SHA1

82ba6a1bbe2bc87d34eca512eb6e0fa3ac5c11d4
SHA256

d4d962064670698c484709d739a6f6959658574365aee39435102eb6f984537a
SHA512

b0f5d240dfc9f24e0c867d619e62b899711e4dee1eda7d4d7a8b575f6ac66af3436a29cd5e4c424da896ee1d31a45b15b4b41094e54f481101a2a9173e98a211
SSDEEP

6144:NzKIE9Zvsxv7wE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTi:NO96x7aAD6RrI1+lDMEAD6Rr2NWL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b9b25a9e7db696b170a2d9591c62b520_exe32.exe
- Size
  
  368KB
- MD5
  
  b9b25a9e7db696b170a2d9591c62b520
- SHA1
  
  82ba6a1bbe2bc87d34eca512eb6e0fa3ac5c11d4
- SHA256
  
  d4d962064670698c484709d739a6f6959658574365aee39435102eb6f984537a
- SHA512
  
  b0f5d240dfc9f24e0c867d619e62b899711e4dee1eda7d4d7a8b575f6ac66af3436a29cd5e4c424da896ee1d31a45b15b4b41094e54f481101a2a9173e98a211
- SSDEEP
  
  6144:NzKIE9Zvsxv7wE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTi:NO96x7aAD6RrI1+lDMEAD6Rr2NWL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2