fe08ff5dc0c5909759a0b6e0d2a60e2d6e76f0f29e48acf10f3718c4c9dc5341 | Triage

Sharing

General

Target

9cecc1d0b416838bea7c581f27f18e50N.exe
Size

1.4MB
Sample

240716-ldawrsvhkr
MD5

9cecc1d0b416838bea7c581f27f18e50
SHA1

8d768ffc8a39808135cde4e0e9cb86c1689fe116
SHA256

fe08ff5dc0c5909759a0b6e0d2a60e2d6e76f0f29e48acf10f3718c4c9dc5341
SHA512

602c392cdd5cd09bf42d0ed22a25ec2ce9c9ea02c4c6acc59f2ab96596739b4849d446ea2e974da080e270d6ac6128c3b0f4d17228c4972f63ae5fdc074fc388
SSDEEP

24576:zc9uOosKYthW+sKYtnc9uOp1c9uOosKYthW+sKYtnc9uOosKYt:IuOosKWDsKWcuOMuOosKWDsKWcuOosKW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9cecc1d0b416838bea7c581f27f18e50N.exe
- Size
  
  1.4MB
- MD5
  
  9cecc1d0b416838bea7c581f27f18e50
- SHA1
  
  8d768ffc8a39808135cde4e0e9cb86c1689fe116
- SHA256
  
  fe08ff5dc0c5909759a0b6e0d2a60e2d6e76f0f29e48acf10f3718c4c9dc5341
- SHA512
  
  602c392cdd5cd09bf42d0ed22a25ec2ce9c9ea02c4c6acc59f2ab96596739b4849d446ea2e974da080e270d6ac6128c3b0f4d17228c4972f63ae5fdc074fc388
- SSDEEP
  
  24576:zc9uOosKYthW+sKYtnc9uOp1c9uOosKYthW+sKYtnc9uOosKYt:IuOosKWDsKWcuOMuOosKWDsKWcuOosKW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2