0401ac4cd100c1308f615f0ea4af2f0c2b2cd1321b154c3bdd53f0ce77290a37 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

efd17fdc1886030b5eb1bb303bdc9d20_exe32.exe
Size

385KB
Sample

231015-yj9cqsge9v
MD5

efd17fdc1886030b5eb1bb303bdc9d20
SHA1

b5dec1b987f7e1b58c85e10532812bc3e720ee62
SHA256

0401ac4cd100c1308f615f0ea4af2f0c2b2cd1321b154c3bdd53f0ce77290a37
SHA512

fbe5d434c25a3bc6f31547b048fd165ce79eaebeeed49ef14ed64f7bd1799c367a8fa2d2167df4486ed0aa0e7a18f65b3bd48897d130cdb2db004ce60af7c3f9
SSDEEP

3072:8kFXNoykCKVAURfE+HXAB0kCySYo0CkkhHs4WfOoKc:5NgCKRs+HXc0uo0CkkW1f

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  efd17fdc1886030b5eb1bb303bdc9d20_exe32.exe
- Size
  
  385KB
- MD5
  
  efd17fdc1886030b5eb1bb303bdc9d20
- SHA1
  
  b5dec1b987f7e1b58c85e10532812bc3e720ee62
- SHA256
  
  0401ac4cd100c1308f615f0ea4af2f0c2b2cd1321b154c3bdd53f0ce77290a37
- SHA512
  
  fbe5d434c25a3bc6f31547b048fd165ce79eaebeeed49ef14ed64f7bd1799c367a8fa2d2167df4486ed0aa0e7a18f65b3bd48897d130cdb2db004ce60af7c3f9
- SSDEEP
  
  3072:8kFXNoykCKVAURfE+HXAB0kCySYo0CkkhHs4WfOoKc:5NgCKRs+HXc0uo0CkkW1f
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2