071929bae9c354abcf6c9e937b5793e6a1c3bf9a630f5122192bdd2367c54277 | Triage

Sharing

General

Target

68d8a99525f7aa2c651f0bdb367fbcb0N.exe
Size

80KB
Sample

240724-kkggfsxbmp
MD5

68d8a99525f7aa2c651f0bdb367fbcb0
SHA1

b5bcd4a0ac6af0a99b1fea47c94bdf0a75df915a
SHA256

071929bae9c354abcf6c9e937b5793e6a1c3bf9a630f5122192bdd2367c54277
SHA512

87437f693fd060f5bbe573e87e2c38bf4439421bd2465cefa2c13c489c536c290def8999f6d9fbb9aeae0e3074528f3a21f476bb3a350c16c5c84f2623aff2dc
SSDEEP

1536:fMvwJbCwsrpHRvFLgxMFz2OaXTrkolaDi3B33BBBl+/iZ67iyvRQACRJJ5R2xOSA:fLFsR9hgxMl23XTrkZ23B33BBBlX67Tw

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  68d8a99525f7aa2c651f0bdb367fbcb0N.exe
- Size
  
  80KB
- MD5
  
  68d8a99525f7aa2c651f0bdb367fbcb0
- SHA1
  
  b5bcd4a0ac6af0a99b1fea47c94bdf0a75df915a
- SHA256
  
  071929bae9c354abcf6c9e937b5793e6a1c3bf9a630f5122192bdd2367c54277
- SHA512
  
  87437f693fd060f5bbe573e87e2c38bf4439421bd2465cefa2c13c489c536c290def8999f6d9fbb9aeae0e3074528f3a21f476bb3a350c16c5c84f2623aff2dc
- SSDEEP
  
  1536:fMvwJbCwsrpHRvFLgxMFz2OaXTrkolaDi3B33BBBl+/iZ67iyvRQACRJJ5R2xOSA:fLFsR9hgxMl23XTrkZ23B33BBBlX67Tw
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence