d1265bd07178a25e6fe006da6d39fcd8b895b1c0b9cf0ffd34a6cea35c71450d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a8b4a087c921488acae92d74977073c0N.exe
Size

239KB
Sample

240806-p1kahazbmn
MD5

a8b4a087c921488acae92d74977073c0
SHA1

9c2a26ee0ffb07b476a8503e718a5bfdc17f049f
SHA256

d1265bd07178a25e6fe006da6d39fcd8b895b1c0b9cf0ffd34a6cea35c71450d
SHA512

5c1545bc521daf2c1b7ffb589f6c2387b5ef2db39109f8b22ae115f1a4e74453eda6e96d24388ca34e69676e625fb1f4e965efcab50df349008f714b7cc69da7
SSDEEP

6144:+P0Mnw/8BZlVrtv35CPXbo92ynn8sbeWDSpaH8n:+PBdHRFbeE8n

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a8b4a087c921488acae92d74977073c0N.exe
- Size
  
  239KB
- MD5
  
  a8b4a087c921488acae92d74977073c0
- SHA1
  
  9c2a26ee0ffb07b476a8503e718a5bfdc17f049f
- SHA256
  
  d1265bd07178a25e6fe006da6d39fcd8b895b1c0b9cf0ffd34a6cea35c71450d
- SHA512
  
  5c1545bc521daf2c1b7ffb589f6c2387b5ef2db39109f8b22ae115f1a4e74453eda6e96d24388ca34e69676e625fb1f4e965efcab50df349008f714b7cc69da7
- SSDEEP
  
  6144:+P0Mnw/8BZlVrtv35CPXbo92ynn8sbeWDSpaH8n:+PBdHRFbeE8n
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence