2f338715fb26ba8c1f6fc8aaadc4937e1cf0ed06bd08972b8e6c6e09f3aeda4d | Triage

Sharing

General

Target

0680a54ec1d66cc05ec42abc7cdbfd40N.exe
Size

384KB
Sample

240801-1fmqnsxbkj
MD5

0680a54ec1d66cc05ec42abc7cdbfd40
SHA1

2c8fe8e17ac44217e8679fbddd9d86a6c9c3c6bf
SHA256

2f338715fb26ba8c1f6fc8aaadc4937e1cf0ed06bd08972b8e6c6e09f3aeda4d
SHA512

cf16934f7444239701321b45ce94bc712c69080f7f11389f4348f5e56028773ae64b18585ab3484a03b1fcfe2d8e57a2d8845d3e08b3b1ce9c200fe15a1eb966
SSDEEP

6144:UhLGL7HlxW29P8SeNpgdyuH1lZfRo0V8JcgE+ezpg12:UBmF87g7/VycgE82

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  0680a54ec1d66cc05ec42abc7cdbfd40N.exe
- Size
  
  384KB
- MD5
  
  0680a54ec1d66cc05ec42abc7cdbfd40
- SHA1
  
  2c8fe8e17ac44217e8679fbddd9d86a6c9c3c6bf
- SHA256
  
  2f338715fb26ba8c1f6fc8aaadc4937e1cf0ed06bd08972b8e6c6e09f3aeda4d
- SHA512
  
  cf16934f7444239701321b45ce94bc712c69080f7f11389f4348f5e56028773ae64b18585ab3484a03b1fcfe2d8e57a2d8845d3e08b3b1ce9c200fe15a1eb966
- SSDEEP
  
  6144:UhLGL7HlxW29P8SeNpgdyuH1lZfRo0V8JcgE+ezpg12:UBmF87g7/VycgE82
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence