41c14b6c1c1332206e04a490a6065adad92209bea55d5f5356fcd9ac87fba182 | Triage

Sharing

General

Target

19275d4b17856c67163cb849c0a7f805.exe
Size

92KB
Sample

240103-r1mfzahbh9
MD5

19275d4b17856c67163cb849c0a7f805
SHA1

d25b0d85ba3d499e2a02cebbc23aca31a964e2e4
SHA256

41c14b6c1c1332206e04a490a6065adad92209bea55d5f5356fcd9ac87fba182
SHA512

c437ae03fa6f033f8a8f632613e50eac69c32f597249ef5c5eed32d0c1ee2b7b25c4bf4811abde4a00d85ca1bec89256fae3d419428917c1325f0b050978b8e3
SSDEEP

384:8qIP3UdwjcIP3UdwHJZ415LW1u93HLrEWJ:ZS3UdwYS3UdwHJGGu93HLrP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  19275d4b17856c67163cb849c0a7f805.exe
- Size
  
  92KB
- MD5
  
  19275d4b17856c67163cb849c0a7f805
- SHA1
  
  d25b0d85ba3d499e2a02cebbc23aca31a964e2e4
- SHA256
  
  41c14b6c1c1332206e04a490a6065adad92209bea55d5f5356fcd9ac87fba182
- SHA512
  
  c437ae03fa6f033f8a8f632613e50eac69c32f597249ef5c5eed32d0c1ee2b7b25c4bf4811abde4a00d85ca1bec89256fae3d419428917c1325f0b050978b8e3
- SSDEEP
  
  384:8qIP3UdwjcIP3UdwHJZ415LW1u93HLrEWJ:ZS3UdwYS3UdwHJGGu93HLrP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2