505abbd4f204799788f57404439eed4d0aa548200effd887bd9280292acf4d70 | Triage

Sharing

General

Target

f4b3467030ca6acfbec8f4f16ca0f60b.exe
Size

80KB
Sample

240103-s8wkaagcdp
MD5

f4b3467030ca6acfbec8f4f16ca0f60b
SHA1

a9e4c1dda5bf8eb2fde5e54120f73885fcb9bb90
SHA256

505abbd4f204799788f57404439eed4d0aa548200effd887bd9280292acf4d70
SHA512

59a26cf8a13675e77021b1220c08af049395d6407e9feba09e7cc00b07cfbadce73aa718d5b9754de8243183e40e0d2449650c52b9e4d7596789e99120d500a1
SSDEEP

1536:RpfyOCK+SlL+P7TUuwbVOpuPS2LJWS5DUHRbPa9b6i+sIk:ThzXYPMuwbcpEfMS5DSCopsIk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f4b3467030ca6acfbec8f4f16ca0f60b.exe
- Size
  
  80KB
- MD5
  
  f4b3467030ca6acfbec8f4f16ca0f60b
- SHA1
  
  a9e4c1dda5bf8eb2fde5e54120f73885fcb9bb90
- SHA256
  
  505abbd4f204799788f57404439eed4d0aa548200effd887bd9280292acf4d70
- SHA512
  
  59a26cf8a13675e77021b1220c08af049395d6407e9feba09e7cc00b07cfbadce73aa718d5b9754de8243183e40e0d2449650c52b9e4d7596789e99120d500a1
- SSDEEP
  
  1536:RpfyOCK+SlL+P7TUuwbVOpuPS2LJWS5DUHRbPa9b6i+sIk:ThzXYPMuwbcpEfMS5DSCopsIk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2