40962b2a411a9dbdb9b288fa1430f912006d66134992c0349c6b566d23681bde | Triage

Sharing

General

Target

GST_Audit_Report.exe
Size

1.5MB
Sample

240703-lgcjrswfjc
MD5

fe310cb94fd6877918c0323c54a29556
SHA1

26d7d7de3b3c7098e2fc52158610227823b6c227
SHA256

40962b2a411a9dbdb9b288fa1430f912006d66134992c0349c6b566d23681bde
SHA512

332bb2726f6bd9daf0604a721ee8f563baf3c8ac892b84a0c6dfc357727ae62153e31f7b7175f246294183d2c65cf51f3def77672b8787272048fbdf36ff3bfe
SSDEEP

24576:P4lavt0LkLL9IMixoEgeaMkIy8OzcQRXorWDbz4q9MmCS:Kkwkn9IMHeaMk+OSWEaPCS

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  GST_Audit_Report.exe
- Size
  
  1.5MB
- MD5
  
  fe310cb94fd6877918c0323c54a29556
- SHA1
  
  26d7d7de3b3c7098e2fc52158610227823b6c227
- SHA256
  
  40962b2a411a9dbdb9b288fa1430f912006d66134992c0349c6b566d23681bde
- SHA512
  
  332bb2726f6bd9daf0604a721ee8f563baf3c8ac892b84a0c6dfc357727ae62153e31f7b7175f246294183d2c65cf51f3def77672b8787272048fbdf36ff3bfe
- SSDEEP
  
  24576:P4lavt0LkLL9IMixoEgeaMkIy8OzcQRXorWDbz4q9MmCS:Kkwkn9IMHeaMk+OSWEaPCS
Score

7^/10

persistence
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2