a04e6e2cfd0fa217b9908e052708cf6666234433f5f942e27b535352b0ac6690 | Triage

Sharing

General

Target

543f3b2a77cedfbc3ee19b66783a4700N.exe
Size

395KB
Sample

240726-zp39catgpn
MD5

543f3b2a77cedfbc3ee19b66783a4700
SHA1

0af0ff9b96e784bdd14c76e09901bddec81ab438
SHA256

a04e6e2cfd0fa217b9908e052708cf6666234433f5f942e27b535352b0ac6690
SHA512

a1562dfb8369efc4dfdc5393b733233caabd964b2b97a4cd02723be5b1cb2eb59f804a1cd1cca7fd317493457b3a01422c6d4ddc4fd7be9d1bae478b7bcf4312
SSDEEP

6144:4jlYKRF/LReWAsUyEkcnvOpbLMBDVbzIrWrPBt7F3Eu9yTaG:4jauDReWNc8boZxz1Bt7FUu9yT9

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  543f3b2a77cedfbc3ee19b66783a4700N.exe
- Size
  
  395KB
- MD5
  
  543f3b2a77cedfbc3ee19b66783a4700
- SHA1
  
  0af0ff9b96e784bdd14c76e09901bddec81ab438
- SHA256
  
  a04e6e2cfd0fa217b9908e052708cf6666234433f5f942e27b535352b0ac6690
- SHA512
  
  a1562dfb8369efc4dfdc5393b733233caabd964b2b97a4cd02723be5b1cb2eb59f804a1cd1cca7fd317493457b3a01422c6d4ddc4fd7be9d1bae478b7bcf4312
- SSDEEP
  
  6144:4jlYKRF/LReWAsUyEkcnvOpbLMBDVbzIrWrPBt7F3Eu9yTaG:4jauDReWNc8boZxz1Bt7FUu9yT9
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence