fe3b6bc878558c49c8d7b88b9a4c79f75f7711214db615dc19f890c92c9ead80 | Triage

Sharing

General

Target

305a19617dd800ee051780e2b5b7c4d0N.exe
Size

391KB
Sample

240722-afe3qathnl
MD5

305a19617dd800ee051780e2b5b7c4d0
SHA1

1ce4c29eb28e018521ca984b2505f3874ad6113e
SHA256

fe3b6bc878558c49c8d7b88b9a4c79f75f7711214db615dc19f890c92c9ead80
SHA512

617bbfbc16a2b67bc91e0e2d3b77823c247ee6bc0a9593fdb02feecf7509400b9c963457e729a67a065539bf805bc7817f95c3ad09e113a5c422cb872c2ae94b
SSDEEP

6144:S/TgHZxA69aAfbAfNtTAfMAfFAfNPUmKyIxLfYeOO9UmKyIxL:ygw6mNtuhUNP3cOK3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  305a19617dd800ee051780e2b5b7c4d0N.exe
- Size
  
  391KB
- MD5
  
  305a19617dd800ee051780e2b5b7c4d0
- SHA1
  
  1ce4c29eb28e018521ca984b2505f3874ad6113e
- SHA256
  
  fe3b6bc878558c49c8d7b88b9a4c79f75f7711214db615dc19f890c92c9ead80
- SHA512
  
  617bbfbc16a2b67bc91e0e2d3b77823c247ee6bc0a9593fdb02feecf7509400b9c963457e729a67a065539bf805bc7817f95c3ad09e113a5c422cb872c2ae94b
- SSDEEP
  
  6144:S/TgHZxA69aAfbAfNtTAfMAfFAfNPUmKyIxLfYeOO9UmKyIxL:ygw6mNtuhUNP3cOK3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2