556902d42a352947d1a91c876489037fab7d8ac9355051da969b25033da6314b | Triage

Sharing

General

Target

20e45b7ca88a05a3a0f1d5b321c5a748.exe
Size

390KB
Sample

231206-xwxzsscb45
MD5

20e45b7ca88a05a3a0f1d5b321c5a748
SHA1

7e645cc420093ddf503dfd835f3bd4d013ef6c53
SHA256

556902d42a352947d1a91c876489037fab7d8ac9355051da969b25033da6314b
SHA512

4283b3467feeeb8311dc02e97e52265078e7e2a8cdd6a2a43e552622c46a0a71783e965916a7f039b540c83076dc401b7c745930437dd0f8521298974d0e357f
SSDEEP

3072:2ZRcOqGXyyzSlADkl3Y6+bWQALHLQGAZzasJR/X4a+SFkVsYtTHTMT5NeVWmjjGF:24yZSaDkNY6CbArLAZ26RQSFSTHAjhV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  20e45b7ca88a05a3a0f1d5b321c5a748.exe
- Size
  
  390KB
- MD5
  
  20e45b7ca88a05a3a0f1d5b321c5a748
- SHA1
  
  7e645cc420093ddf503dfd835f3bd4d013ef6c53
- SHA256
  
  556902d42a352947d1a91c876489037fab7d8ac9355051da969b25033da6314b
- SHA512
  
  4283b3467feeeb8311dc02e97e52265078e7e2a8cdd6a2a43e552622c46a0a71783e965916a7f039b540c83076dc401b7c745930437dd0f8521298974d0e357f
- SSDEEP
  
  3072:2ZRcOqGXyyzSlADkl3Y6+bWQALHLQGAZzasJR/X4a+SFkVsYtTHTMT5NeVWmjjGF:24yZSaDkNY6CbArLAZ26RQSFSTHAjhV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2