dca617a7df96f9dd46fe9bc4e6f04dba930996b192e515b7212f0dcf23295dd6 | Triage

Sharing

General

Target

1618ec479543b5c397d9d3add894d880N.exe
Size

55KB
Sample

240714-y68pqawcke
MD5

1618ec479543b5c397d9d3add894d880
SHA1

70253932596ca793d79a634a7f118fb242558d21
SHA256

dca617a7df96f9dd46fe9bc4e6f04dba930996b192e515b7212f0dcf23295dd6
SHA512

7455dc84328a303dd6262e28b1d141316235e6674fd0592830d058f63a8f271af55290fef0b027d5f2f1cd0878b5db2669aacace81ddfe6cfa7217e9bed47900
SSDEEP

1536:hzbotXpj2KXPhhPnu4UAn+1DSQ/+EkYIvvl+:pspXXPhhPu4UA+1DSQmESvvl+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1618ec479543b5c397d9d3add894d880N.exe
- Size
  
  55KB
- MD5
  
  1618ec479543b5c397d9d3add894d880
- SHA1
  
  70253932596ca793d79a634a7f118fb242558d21
- SHA256
  
  dca617a7df96f9dd46fe9bc4e6f04dba930996b192e515b7212f0dcf23295dd6
- SHA512
  
  7455dc84328a303dd6262e28b1d141316235e6674fd0592830d058f63a8f271af55290fef0b027d5f2f1cd0878b5db2669aacace81ddfe6cfa7217e9bed47900
- SSDEEP
  
  1536:hzbotXpj2KXPhhPnu4UAn+1DSQ/+EkYIvvl+:pspXXPhhPu4UA+1DSQmESvvl+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2