b9df31502a1cf86de21e82c132fd3e3ce90c20fd305c0fe95ef2f19db3087379 | Triage

Sharing

General

Target

fe3676830c9707cef065dee412cdade0N.exe
Size

520KB
Sample

240720-xhwvkswama
MD5

fe3676830c9707cef065dee412cdade0
SHA1

e4aa72881e6896adb94ef851a075dd2bb23ec773
SHA256

b9df31502a1cf86de21e82c132fd3e3ce90c20fd305c0fe95ef2f19db3087379
SHA512

870c9fdae4a492eeb783dda6498856ed050b19fb8576491f597b93dc88fa090b12c57d65ed57f1f1d6f7319afaf1def8e7118bc15d49e97883c5b8ea1641011e
SSDEEP

6144:o1AKJXMFM6234lKm3mo8Yvi4KsLTFM6234lKm3r8SeNpgdyuH1lZfRo0V8JcgEH:ouKJ8FB24lwR45FB24lJ87g7/VycgEH

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  fe3676830c9707cef065dee412cdade0N.exe
- Size
  
  520KB
- MD5
  
  fe3676830c9707cef065dee412cdade0
- SHA1
  
  e4aa72881e6896adb94ef851a075dd2bb23ec773
- SHA256
  
  b9df31502a1cf86de21e82c132fd3e3ce90c20fd305c0fe95ef2f19db3087379
- SHA512
  
  870c9fdae4a492eeb783dda6498856ed050b19fb8576491f597b93dc88fa090b12c57d65ed57f1f1d6f7319afaf1def8e7118bc15d49e97883c5b8ea1641011e
- SSDEEP
  
  6144:o1AKJXMFM6234lKm3mo8Yvi4KsLTFM6234lKm3r8SeNpgdyuH1lZfRo0V8JcgEH:ouKJ8FB24lwR45FB24lJ87g7/VycgEH
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2