478ca722e02bd3e4c50c5f1b2008fb0264b4b44365efdcc61ad20043a1a4c318 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42142e72974e30f023b785d0f7ae72d0N.exe
Size

69KB
Sample

240707-fjy8nathkp
MD5

42142e72974e30f023b785d0f7ae72d0
SHA1

8b2f97dc0bfafc2c0767d8b14c9b93b444eb9792
SHA256

478ca722e02bd3e4c50c5f1b2008fb0264b4b44365efdcc61ad20043a1a4c318
SHA512

cfccc4c923cc19edaf3df851bb37d3df3471fbb77daabffbd50b8d5536549fc93b6f98d47888d4cb2b3799821e214034c3e7d8f4c86c6dba27ba1a2af7ba2f9c
SSDEEP

1536:zVr5i5VsbMeP2/89jBs8Nein/GFZCeDAyY:z16EhhjBs8NFn/GFZC1yY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  42142e72974e30f023b785d0f7ae72d0N.exe
- Size
  
  69KB
- MD5
  
  42142e72974e30f023b785d0f7ae72d0
- SHA1
  
  8b2f97dc0bfafc2c0767d8b14c9b93b444eb9792
- SHA256
  
  478ca722e02bd3e4c50c5f1b2008fb0264b4b44365efdcc61ad20043a1a4c318
- SHA512
  
  cfccc4c923cc19edaf3df851bb37d3df3471fbb77daabffbd50b8d5536549fc93b6f98d47888d4cb2b3799821e214034c3e7d8f4c86c6dba27ba1a2af7ba2f9c
- SSDEEP
  
  1536:zVr5i5VsbMeP2/89jBs8Nein/GFZCeDAyY:z16EhhjBs8NFn/GFZC1yY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2