1b8c5d1b1e197237954a6795daf001b6ed65126b8c51e2b466e8031fc58a84ba | Triage

Sharing

General

Target

4eefbce32c4e1e2dea3ad3484cabae90N.exe
Size

89KB
Sample

240724-fq8qnszapr
MD5

4eefbce32c4e1e2dea3ad3484cabae90
SHA1

fc83c2e7de80b8c3cde453db7bb7e1742469e0cf
SHA256

1b8c5d1b1e197237954a6795daf001b6ed65126b8c51e2b466e8031fc58a84ba
SHA512

c8cd66e3096b806cdd125363a4c35d055ff25c6739b1b079219d68cc013eea5344ef3a0d9dabbc3c7462b0ee16455e8a652ad64f835e5ac6fea9cf09dd8c9620
SSDEEP

1536:kO0J9YesLxqf+LKFzbWR3MhSZMoyOZbmsCIK282c8CPGCECa9bC7e3iaqWpOBMD:NO9YeEY+GFtOZbmhD28Qxnd9GMHqW/

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  4eefbce32c4e1e2dea3ad3484cabae90N.exe
- Size
  
  89KB
- MD5
  
  4eefbce32c4e1e2dea3ad3484cabae90
- SHA1
  
  fc83c2e7de80b8c3cde453db7bb7e1742469e0cf
- SHA256
  
  1b8c5d1b1e197237954a6795daf001b6ed65126b8c51e2b466e8031fc58a84ba
- SHA512
  
  c8cd66e3096b806cdd125363a4c35d055ff25c6739b1b079219d68cc013eea5344ef3a0d9dabbc3c7462b0ee16455e8a652ad64f835e5ac6fea9cf09dd8c9620
- SSDEEP
  
  1536:kO0J9YesLxqf+LKFzbWR3MhSZMoyOZbmsCIK282c8CPGCECa9bC7e3iaqWpOBMD:NO9YeEY+GFtOZbmhD28Qxnd9GMHqW/
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence