3fc44b105d5cb147228d69bfc6df01a0578a0937b71865893c3787dc2f24c932 | Triage

Sharing

General

Target

05f27472b6ca397ab1c890a5b08dec60N.exe
Size

404KB
Sample

240801-1dr8da1eja
MD5

05f27472b6ca397ab1c890a5b08dec60
SHA1

95e7e27ac0632ba90ff2575f140d2a7514c97fed
SHA256

3fc44b105d5cb147228d69bfc6df01a0578a0937b71865893c3787dc2f24c932
SHA512

177233140eb244de76b1ace2292b46b782dfcea5f0d8aeb125516839229db3fdb45be08420d895fb3cc0c18a377d303a2a4d9971d59c8206858a3cd56e2253e9
SSDEEP

6144:KLkZZnS1qCgcQelT7CBWtqCgcLx4cZgKjqCgcQelT7CBWtqCgc:KLFqCocyBqqCssqCocyBqqC

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  05f27472b6ca397ab1c890a5b08dec60N.exe
- Size
  
  404KB
- MD5
  
  05f27472b6ca397ab1c890a5b08dec60
- SHA1
  
  95e7e27ac0632ba90ff2575f140d2a7514c97fed
- SHA256
  
  3fc44b105d5cb147228d69bfc6df01a0578a0937b71865893c3787dc2f24c932
- SHA512
  
  177233140eb244de76b1ace2292b46b782dfcea5f0d8aeb125516839229db3fdb45be08420d895fb3cc0c18a377d303a2a4d9971d59c8206858a3cd56e2253e9
- SSDEEP
  
  6144:KLkZZnS1qCgcQelT7CBWtqCgcLx4cZgKjqCgcQelT7CBWtqCgc:KLFqCocyBqqCssqCocyBqqC
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence