8fdaf756eeaa93de90602939e45c0b0c00fbbab3349f509d6a5b7cc6775a81ec | Triage

Sharing

General

Target

ab56fd92ad19dd53e100d84afe007dfd.exe
Size

370KB
Sample

240106-zp3b2shde9
MD5

ab56fd92ad19dd53e100d84afe007dfd
SHA1

6dfa92def9432bdeb9bc62e84e3a006d75eea1ec
SHA256

8fdaf756eeaa93de90602939e45c0b0c00fbbab3349f509d6a5b7cc6775a81ec
SHA512

d4217afa09ac3f6bffc2a0ede7c89a43831a7a39971b63245ebd371a88fcfb2a618b986b10e6d22f705a0d5fb18637f59ff6dbe448c5d6ff214602a59c197884
SSDEEP

6144:BvJsgAwiXCiYpNyGpNDU9fwRE5H2dpNonHd/twMLc2Ao2pEYTBFqZNjE1rhJg3ht:cNXXqUfCyHJWx67fLx67

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ab56fd92ad19dd53e100d84afe007dfd.exe
- Size
  
  370KB
- MD5
  
  ab56fd92ad19dd53e100d84afe007dfd
- SHA1
  
  6dfa92def9432bdeb9bc62e84e3a006d75eea1ec
- SHA256
  
  8fdaf756eeaa93de90602939e45c0b0c00fbbab3349f509d6a5b7cc6775a81ec
- SHA512
  
  d4217afa09ac3f6bffc2a0ede7c89a43831a7a39971b63245ebd371a88fcfb2a618b986b10e6d22f705a0d5fb18637f59ff6dbe448c5d6ff214602a59c197884
- SSDEEP
  
  6144:BvJsgAwiXCiYpNyGpNDU9fwRE5H2dpNonHd/twMLc2Ao2pEYTBFqZNjE1rhJg3ht:cNXXqUfCyHJWx67fLx67
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2