bf4de24c74b4547437c01e26bc92cb658f168d232b719acdc51c79b05027a192 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f7fd114d1ac5d4924a7e9871d29648d0.exe
Size

128KB
Sample

240108-ys3ljsgehj
MD5

f7fd114d1ac5d4924a7e9871d29648d0
SHA1

5d141fff5e8bcd8029708ae3e0117a8be9c7780f
SHA256

bf4de24c74b4547437c01e26bc92cb658f168d232b719acdc51c79b05027a192
SHA512

12775a2cdd4760459d410638df5e83bea25b4d1ddcc85d5cd1d31fc109a0170144f40ea5e2b317890805b8a945d9a3500e01416d4b402046f181744b23aafd2b
SSDEEP

3072:Xfn113EriRnkrA535CPxMeEvPOdgujv6NLPfFFrKP9:Xfn110rInkrALCJML3OdgawrFZKP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f7fd114d1ac5d4924a7e9871d29648d0.exe
- Size
  
  128KB
- MD5
  
  f7fd114d1ac5d4924a7e9871d29648d0
- SHA1
  
  5d141fff5e8bcd8029708ae3e0117a8be9c7780f
- SHA256
  
  bf4de24c74b4547437c01e26bc92cb658f168d232b719acdc51c79b05027a192
- SHA512
  
  12775a2cdd4760459d410638df5e83bea25b4d1ddcc85d5cd1d31fc109a0170144f40ea5e2b317890805b8a945d9a3500e01416d4b402046f181744b23aafd2b
- SSDEEP
  
  3072:Xfn113EriRnkrA535CPxMeEvPOdgujv6NLPfFFrKP9:Xfn110rInkrALCJML3OdgawrFZKP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2