639a9e4dd3317b2668a10211808427c7a4193e3c0b5b92a445b2eee732cd57e9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85d494915c8269bdc518ce0a374db280N.exe
Size

2.7MB
Sample

240719-mpf3lazfmg
MD5

85d494915c8269bdc518ce0a374db280
SHA1

c5dc16bb036208da99f3f8899c0bacd912223dfe
SHA256

639a9e4dd3317b2668a10211808427c7a4193e3c0b5b92a445b2eee732cd57e9
SHA512

138c8b28abaed737d6ad0007dc7c97f19df1b55f445750675f441e5d1c70824ee8a7f3f2637113eaf5112c2f4d459000393eaa422727367937fdbdebc75a729a
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBd9w4Sx:+R0pI/IQlUoMPdmpSp14

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  85d494915c8269bdc518ce0a374db280N.exe
- Size
  
  2.7MB
- MD5
  
  85d494915c8269bdc518ce0a374db280
- SHA1
  
  c5dc16bb036208da99f3f8899c0bacd912223dfe
- SHA256
  
  639a9e4dd3317b2668a10211808427c7a4193e3c0b5b92a445b2eee732cd57e9
- SHA512
  
  138c8b28abaed737d6ad0007dc7c97f19df1b55f445750675f441e5d1c70824ee8a7f3f2637113eaf5112c2f4d459000393eaa422727367937fdbdebc75a729a
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBd9w4Sx:+R0pI/IQlUoMPdmpSp14
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2