aa4fe07c828404b105ca81e0024595273ecab281aecd7c10084d9e83164e44d4 | Triage

Sharing

General

Target

4f49daa55933421952cf5e06eb6c1ef0N.exe
Size

45KB
Sample

240722-dkfftsyaqp
MD5

4f49daa55933421952cf5e06eb6c1ef0
SHA1

467caa75e94c4aedd800a22b316538e3ca6049f2
SHA256

aa4fe07c828404b105ca81e0024595273ecab281aecd7c10084d9e83164e44d4
SHA512

a3773480351f3d3f68e61b2689e2fad09e80cd2fec565ffe937d171e9f9625a6127a5fc667bd0e04267480f347cd4a1db897d91b17926c29b51f453379be1419
SSDEEP

768:PgITG/8vu3GH69Yr05YMlRFt6d8rc24lyQAu5rLy/1H5:PgIlviI69Yr05YMlRFt6d8rIlzrL4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4f49daa55933421952cf5e06eb6c1ef0N.exe
- Size
  
  45KB
- MD5
  
  4f49daa55933421952cf5e06eb6c1ef0
- SHA1
  
  467caa75e94c4aedd800a22b316538e3ca6049f2
- SHA256
  
  aa4fe07c828404b105ca81e0024595273ecab281aecd7c10084d9e83164e44d4
- SHA512
  
  a3773480351f3d3f68e61b2689e2fad09e80cd2fec565ffe937d171e9f9625a6127a5fc667bd0e04267480f347cd4a1db897d91b17926c29b51f453379be1419
- SSDEEP
  
  768:PgITG/8vu3GH69Yr05YMlRFt6d8rc24lyQAu5rLy/1H5:PgIlviI69Yr05YMlRFt6d8rIlzrL4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2