c1524e7a528983eca8c846f7ff3a61d0a54bd4f1e2ad6095f4a6eec4109fc458 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74d39f8306498ebe20286221301b9920N.exe
Size

2.7MB
Sample

240719-kdmd5a1flr
MD5

74d39f8306498ebe20286221301b9920
SHA1

390a5cb9397e21fecf02c0b67e6ae3a79c8411a5
SHA256

c1524e7a528983eca8c846f7ff3a61d0a54bd4f1e2ad6095f4a6eec4109fc458
SHA512

40db30874bdfea304ae5bf0c589aa118e2b49cadb3b0305366bd64df9e5da70ea16be96b554b26d0e416c8b81ed94e6cba2501aa42b0ed12ddb4d22c740bc1f2
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBx9w4Sx:+R0pI/IQlUoMPdmpSpJ4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  74d39f8306498ebe20286221301b9920N.exe
- Size
  
  2.7MB
- MD5
  
  74d39f8306498ebe20286221301b9920
- SHA1
  
  390a5cb9397e21fecf02c0b67e6ae3a79c8411a5
- SHA256
  
  c1524e7a528983eca8c846f7ff3a61d0a54bd4f1e2ad6095f4a6eec4109fc458
- SHA512
  
  40db30874bdfea304ae5bf0c589aa118e2b49cadb3b0305366bd64df9e5da70ea16be96b554b26d0e416c8b81ed94e6cba2501aa42b0ed12ddb4d22c740bc1f2
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBx9w4Sx:+R0pI/IQlUoMPdmpSpJ4
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2