225bfce6f77c492fd95cd8ca3b877c5242a667c057df161bfcd8989f43a5745c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6dc755bbc28238919c17dc84fa060d20N.exe
Size

76KB
Sample

240803-jlhv8sxamj
MD5

6dc755bbc28238919c17dc84fa060d20
SHA1

69c15c5794090b73d9aedc22e2e39e160bf16df7
SHA256

225bfce6f77c492fd95cd8ca3b877c5242a667c057df161bfcd8989f43a5745c
SHA512

984da67ba751252f7d46281ea0d68bb0a1c76c52f95f7c2912034013867d2e01bca19dd7e537c3cff4a469ad20fb1cac6183dc32df8da5d0642c97e99cca1beb
SSDEEP

1536:LuDoeho1NPdjuHeCMK0bmD0vpHioQV+/eCeyvCQ:KDoeWndKHeCMKfD0vpHrk+

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6dc755bbc28238919c17dc84fa060d20N.exe
- Size
  
  76KB
- MD5
  
  6dc755bbc28238919c17dc84fa060d20
- SHA1
  
  69c15c5794090b73d9aedc22e2e39e160bf16df7
- SHA256
  
  225bfce6f77c492fd95cd8ca3b877c5242a667c057df161bfcd8989f43a5745c
- SHA512
  
  984da67ba751252f7d46281ea0d68bb0a1c76c52f95f7c2912034013867d2e01bca19dd7e537c3cff4a469ad20fb1cac6183dc32df8da5d0642c97e99cca1beb
- SSDEEP
  
  1536:LuDoeho1NPdjuHeCMK0bmD0vpHioQV+/eCeyvCQ:KDoeWndKHeCMKfD0vpHrk+
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence