3f1644ab380c527051e3c7c6e3817fcc7bdacc793898609554d4197dd5d06f1e | Triage

Sharing

General

Target

b48b215d1e9a5e6e519f6596af0dbf80N.exe
Size

59KB
Sample

240721-m895sayfla
MD5

b48b215d1e9a5e6e519f6596af0dbf80
SHA1

8c80a3088accbd6e7490e9570d86835f6fa5a925
SHA256

3f1644ab380c527051e3c7c6e3817fcc7bdacc793898609554d4197dd5d06f1e
SHA512

92c0b945b2bf24fe764be6a9a6cefd31f3b3b1793b3078ecc7312db15b7ccb6252e8c7adf05c834198e196588acc8f4b4f6d953d91834ffae80d212df9e4a596
SSDEEP

768:k4XT8wxX8a3OEcM/vyL3fpCQTDWYre0z8zjmmFmmmmmmmmmmmmmmVmmmmmmm8mm7:3T/XheY23f7/xi8CuTa2L7O

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b48b215d1e9a5e6e519f6596af0dbf80N.exe
- Size
  
  59KB
- MD5
  
  b48b215d1e9a5e6e519f6596af0dbf80
- SHA1
  
  8c80a3088accbd6e7490e9570d86835f6fa5a925
- SHA256
  
  3f1644ab380c527051e3c7c6e3817fcc7bdacc793898609554d4197dd5d06f1e
- SHA512
  
  92c0b945b2bf24fe764be6a9a6cefd31f3b3b1793b3078ecc7312db15b7ccb6252e8c7adf05c834198e196588acc8f4b4f6d953d91834ffae80d212df9e4a596
- SSDEEP
  
  768:k4XT8wxX8a3OEcM/vyL3fpCQTDWYre0z8zjmmFmmmmmmmmmmmmmmVmmmmmmm8mm7:3T/XheY23f7/xi8CuTa2L7O
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2