a367735b021a9163087429dee0e816d84e945cc489796d9d1972746f9f7b0614 | Triage

Sharing

General

Target

509917b3695ed46e36309343876a59e0N.exe
Size

97KB
Sample

240722-dratxsvhnf
MD5

509917b3695ed46e36309343876a59e0
SHA1

6c87c1bc2f5223875b4368117abaa9684b00ff2b
SHA256

a367735b021a9163087429dee0e816d84e945cc489796d9d1972746f9f7b0614
SHA512

620a94bec655b84096c8a659bd4c09f030bd95a43e82fd01a30c153753d0f5455b7c543934ad8bd81e43efa88d984baa84297e70e59a78e4d064631c63a5a575
SSDEEP

1536:KKR18dZ6PWBIAWSiP6rkizUsZAYGtir8GC7GK5wr2PbWM9vJXeYZ6:Ks8d1Kt6rJzUIG4nVSWKJXeK6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  509917b3695ed46e36309343876a59e0N.exe
- Size
  
  97KB
- MD5
  
  509917b3695ed46e36309343876a59e0
- SHA1
  
  6c87c1bc2f5223875b4368117abaa9684b00ff2b
- SHA256
  
  a367735b021a9163087429dee0e816d84e945cc489796d9d1972746f9f7b0614
- SHA512
  
  620a94bec655b84096c8a659bd4c09f030bd95a43e82fd01a30c153753d0f5455b7c543934ad8bd81e43efa88d984baa84297e70e59a78e4d064631c63a5a575
- SSDEEP
  
  1536:KKR18dZ6PWBIAWSiP6rkizUsZAYGtir8GC7GK5wr2PbWM9vJXeYZ6:Ks8d1Kt6rJzUIG4nVSWKJXeK6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2