4c9573d720f1fae5e174c5d74ecec4ad03fc80341b89e4e2b5cfa31b9a2d5eba | Triage

Sharing

General

Target

c789aa7731d1fd756cd9e10039d966c0N.exe
Size

2.7MB
Sample

240802-yegf6asdle
MD5

c789aa7731d1fd756cd9e10039d966c0
SHA1

a334e136fa07d9d5af37641ac5e7c68ddbf8e981
SHA256

4c9573d720f1fae5e174c5d74ecec4ad03fc80341b89e4e2b5cfa31b9a2d5eba
SHA512

0f673ce6f9f0a48a3d1061008b8207ecc17f779a35520242a632c7c7f9b8dd74fcaf60572f1347e1117dbaa8d6d930cb270625f311066a8eaa768ce7e360f275
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBm9w4Sx:+R0pI/IQlUoMPdmpSpU4

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  c789aa7731d1fd756cd9e10039d966c0N.exe
- Size
  
  2.7MB
- MD5
  
  c789aa7731d1fd756cd9e10039d966c0
- SHA1
  
  a334e136fa07d9d5af37641ac5e7c68ddbf8e981
- SHA256
  
  4c9573d720f1fae5e174c5d74ecec4ad03fc80341b89e4e2b5cfa31b9a2d5eba
- SHA512
  
  0f673ce6f9f0a48a3d1061008b8207ecc17f779a35520242a632c7c7f9b8dd74fcaf60572f1347e1117dbaa8d6d930cb270625f311066a8eaa768ce7e360f275
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBm9w4Sx:+R0pI/IQlUoMPdmpSpU4
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence