9ee4fcd2372f95ec58cdfc4e039a372e2fcdf89c06685dc17c14ed76f6f396d8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

000147278e59a554844dd9359f0e09b4.exe
Size

1.1MB
Sample

231126-lannfsgc84
MD5

000147278e59a554844dd9359f0e09b4
SHA1

810019f7bf9aa81f62b21840b53665608756f317
SHA256

9ee4fcd2372f95ec58cdfc4e039a372e2fcdf89c06685dc17c14ed76f6f396d8
SHA512

5c38e801ceffb3ce98619b43fb4a8b16bd97581ffb7b9377afd0b742faf3226dccbaed9e7311ebd2d6d8812653a9be34406fe49cd6084bc471751fd176624fe8
SSDEEP

12288:wLv7m05XEvG6IveDVqvQ6IvYvc6IveDVqvQ6IvIn+v7vc6IveDVqvQ6Iv5d5v7m7:/6X1q5h3q5hkntq5hU6X1q5h3B

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  000147278e59a554844dd9359f0e09b4.exe
- Size
  
  1.1MB
- MD5
  
  000147278e59a554844dd9359f0e09b4
- SHA1
  
  810019f7bf9aa81f62b21840b53665608756f317
- SHA256
  
  9ee4fcd2372f95ec58cdfc4e039a372e2fcdf89c06685dc17c14ed76f6f396d8
- SHA512
  
  5c38e801ceffb3ce98619b43fb4a8b16bd97581ffb7b9377afd0b742faf3226dccbaed9e7311ebd2d6d8812653a9be34406fe49cd6084bc471751fd176624fe8
- SSDEEP
  
  12288:wLv7m05XEvG6IveDVqvQ6IvYvc6IveDVqvQ6IvIn+v7vc6IveDVqvQ6Iv5d5v7m7:/6X1q5h3q5hkntq5hU6X1q5h3B
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2