91efc00448223f67669e0ba0e3150a3ed6ce4585821a6b59c2dcb807b6d8c4d7 | Triage

Sharing

General

Target

34ef1a531c6c07175b6c9a6e00a9a20a.exe
Size

192KB
Sample

231230-xh2qtsbcfj
MD5

34ef1a531c6c07175b6c9a6e00a9a20a
SHA1

888d004d1f445c875d62c3d68fd423e4eb76e16c
SHA256

91efc00448223f67669e0ba0e3150a3ed6ce4585821a6b59c2dcb807b6d8c4d7
SHA512

21b0eefa57c12386cb09356a3c2de64be494d675ae4e856ea7c27292bfbeb27df6ee808cb44c3f92fe48523b6724c949b054087825ea599ec123b9e50e89da44
SSDEEP

3072:iSRqB3Q88VrWdBMgVAUVe/9pui6yYPaI7DehizrVtNe3eBU053xQL0:iS4B3gr4hVAU4Fpui6yYPaIGckSU0580

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  34ef1a531c6c07175b6c9a6e00a9a20a.exe
- Size
  
  192KB
- MD5
  
  34ef1a531c6c07175b6c9a6e00a9a20a
- SHA1
  
  888d004d1f445c875d62c3d68fd423e4eb76e16c
- SHA256
  
  91efc00448223f67669e0ba0e3150a3ed6ce4585821a6b59c2dcb807b6d8c4d7
- SHA512
  
  21b0eefa57c12386cb09356a3c2de64be494d675ae4e856ea7c27292bfbeb27df6ee808cb44c3f92fe48523b6724c949b054087825ea599ec123b9e50e89da44
- SSDEEP
  
  3072:iSRqB3Q88VrWdBMgVAUVe/9pui6yYPaI7DehizrVtNe3eBU053xQL0:iS4B3gr4hVAU4Fpui6yYPaIGckSU0580
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2