3436e4d94e0fc1d5d6c678e5b04d227b99c437e5fe1a49549c62cad03777a649 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55f62bbd5be1c1c833dd9a1d34916a00N.exe
Size

2.7MB
Sample

240724-graeya1enn
MD5

55f62bbd5be1c1c833dd9a1d34916a00
SHA1

d44afe72a30234be686f34b7a84bc0c66d74a8b6
SHA256

3436e4d94e0fc1d5d6c678e5b04d227b99c437e5fe1a49549c62cad03777a649
SHA512

46a6dd8ab95adc7bc89d8adeef9b5d082298d9ce7c824408e513ca3b5c5a58c1ec64fa841328af170c329227c13e2965c8b3e3e951a51e0f0d9e5909685705b4
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBg9w4Sx:+R0pI/IQlUoMPdmpSp24

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  55f62bbd5be1c1c833dd9a1d34916a00N.exe
- Size
  
  2.7MB
- MD5
  
  55f62bbd5be1c1c833dd9a1d34916a00
- SHA1
  
  d44afe72a30234be686f34b7a84bc0c66d74a8b6
- SHA256
  
  3436e4d94e0fc1d5d6c678e5b04d227b99c437e5fe1a49549c62cad03777a649
- SHA512
  
  46a6dd8ab95adc7bc89d8adeef9b5d082298d9ce7c824408e513ca3b5c5a58c1ec64fa841328af170c329227c13e2965c8b3e3e951a51e0f0d9e5909685705b4
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBg9w4Sx:+R0pI/IQlUoMPdmpSp24
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence