b8d12a5dc2d85658bde028f6b0a462e2d935055b002a692a0362b1931ae881e2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

faffe1c87afb02aa3935b260735947f0_exe32.exe
Size

362KB
Sample

231015-ykvkzaha7s
MD5

faffe1c87afb02aa3935b260735947f0
SHA1

578fea2e5a24591ca9dde290cdef437cb572b3a4
SHA256

b8d12a5dc2d85658bde028f6b0a462e2d935055b002a692a0362b1931ae881e2
SHA512

e0981ad246d5b39a8f13b9a5994a1990971b0bb5913f93e2aea4408ffbf7edae3af43d11ef0c253eb153cc99a8a77184638a2325c1d9ce2b5fdd854fdb880d3d
SSDEEP

6144:0PFIP4l9tGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxriE5:OtmuMtrQ07nGWxWSsmiMyh95r5OPGaj+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  faffe1c87afb02aa3935b260735947f0_exe32.exe
- Size
  
  362KB
- MD5
  
  faffe1c87afb02aa3935b260735947f0
- SHA1
  
  578fea2e5a24591ca9dde290cdef437cb572b3a4
- SHA256
  
  b8d12a5dc2d85658bde028f6b0a462e2d935055b002a692a0362b1931ae881e2
- SHA512
  
  e0981ad246d5b39a8f13b9a5994a1990971b0bb5913f93e2aea4408ffbf7edae3af43d11ef0c253eb153cc99a8a77184638a2325c1d9ce2b5fdd854fdb880d3d
- SSDEEP
  
  6144:0PFIP4l9tGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxriE5:OtmuMtrQ07nGWxWSsmiMyh95r5OPGaj+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2