09e40a1cb1fe1e2d6c92d606c995bab9a9fd703db75197f64bfee31657eeec8f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09e40a1cb1fe1e2d6c92d606c995bab9a9fd703db75197f64bfee31657eeec8f.exe
Size

55KB
Sample

240703-zwlmwayenc
MD5

f6862071afb2c7d63a9d50883d990900
SHA1

6ac2bd378355433f13666908b039f455e13282dc
SHA256

09e40a1cb1fe1e2d6c92d606c995bab9a9fd703db75197f64bfee31657eeec8f
SHA512

ffa5381fccdd27bbcc8e934e4a739dbb6863d4d5e8394436c9a5af5e4e1bbf0be2909c4d5f0828fd601a6a6841a1b0b5841cfb50633e8b26fe1ce37b44e41c85
SSDEEP

1536:gc1EwRLIU/E8EA0yYYvEzOvvfTARNSoNSd0A3shxD6:0uIQMA0yYFzOvvMRNXNW0A8hh

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  09e40a1cb1fe1e2d6c92d606c995bab9a9fd703db75197f64bfee31657eeec8f.exe
- Size
  
  55KB
- MD5
  
  f6862071afb2c7d63a9d50883d990900
- SHA1
  
  6ac2bd378355433f13666908b039f455e13282dc
- SHA256
  
  09e40a1cb1fe1e2d6c92d606c995bab9a9fd703db75197f64bfee31657eeec8f
- SHA512
  
  ffa5381fccdd27bbcc8e934e4a739dbb6863d4d5e8394436c9a5af5e4e1bbf0be2909c4d5f0828fd601a6a6841a1b0b5841cfb50633e8b26fe1ce37b44e41c85
- SSDEEP
  
  1536:gc1EwRLIU/E8EA0yYYvEzOvvfTARNSoNSd0A3shxD6:0uIQMA0yYFzOvvMRNXNW0A8hh
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2