d67e6cb16404f2ab40d48d4c24712b3fab0bdc08ea40dfca3639307efe6fbd11 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8bc6de94e4f23b341a6a0c132262b520N.exe
Size

285KB
Sample

240715-fxkmesseqa
MD5

8bc6de94e4f23b341a6a0c132262b520
SHA1

dbee99949bf052445210a60c958d8af2120e6b4d
SHA256

d67e6cb16404f2ab40d48d4c24712b3fab0bdc08ea40dfca3639307efe6fbd11
SHA512

19abeaf2c7d33c6ecd093dd380e4eee49b0316ef7b3c349eac5c9825ddf100a381e4e5865fcae6787a8fb891b4120d8f811f6c37be74588a71dd9aa9d729352e
SSDEEP

3072:IjJvPrM3SFOLSiQadtja1edeiKVcbMloVRr3uMg0kAqSxYiJ2QM4GKch:I9vwiF6rjgXiKQIoi7tWa

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8bc6de94e4f23b341a6a0c132262b520N.exe
- Size
  
  285KB
- MD5
  
  8bc6de94e4f23b341a6a0c132262b520
- SHA1
  
  dbee99949bf052445210a60c958d8af2120e6b4d
- SHA256
  
  d67e6cb16404f2ab40d48d4c24712b3fab0bdc08ea40dfca3639307efe6fbd11
- SHA512
  
  19abeaf2c7d33c6ecd093dd380e4eee49b0316ef7b3c349eac5c9825ddf100a381e4e5865fcae6787a8fb891b4120d8f811f6c37be74588a71dd9aa9d729352e
- SSDEEP
  
  3072:IjJvPrM3SFOLSiQadtja1edeiKVcbMloVRr3uMg0kAqSxYiJ2QM4GKch:I9vwiF6rjgXiKQIoi7tWa
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2