64e21d180b88b80f5812f8cfbffbfd96d022563a8f558e707f632a04be5bf300 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dab254b8dc1d6e7618e04c3c515c03a0N.exe
Size

59KB
Sample

240813-tmalcsyaln
MD5

dab254b8dc1d6e7618e04c3c515c03a0
SHA1

b30e7a2c6d76a36d06b829511f74ed84bb79bbbd
SHA256

64e21d180b88b80f5812f8cfbffbfd96d022563a8f558e707f632a04be5bf300
SHA512

fc6dd566f77862e02e0a52a47c8a8d91b7ce42e7a932024cfa4a9dd594393c0fe06482d2ae8120d765a07d715c336e201e4a0549d2ae8a7a7a93834f298c8e7f
SSDEEP

1536:4tFo/I5xOjHoBlWWtLANP+dsfCbCDN2LOO:CFqI54jI7W4mmd2tSOO

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  dab254b8dc1d6e7618e04c3c515c03a0N.exe
- Size
  
  59KB
- MD5
  
  dab254b8dc1d6e7618e04c3c515c03a0
- SHA1
  
  b30e7a2c6d76a36d06b829511f74ed84bb79bbbd
- SHA256
  
  64e21d180b88b80f5812f8cfbffbfd96d022563a8f558e707f632a04be5bf300
- SHA512
  
  fc6dd566f77862e02e0a52a47c8a8d91b7ce42e7a932024cfa4a9dd594393c0fe06482d2ae8120d765a07d715c336e201e4a0549d2ae8a7a7a93834f298c8e7f
- SSDEEP
  
  1536:4tFo/I5xOjHoBlWWtLANP+dsfCbCDN2LOO:CFqI54jI7W4mmd2tSOO
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence