b1e460a6aa70b976a1c65f7006a1958ba0e8a2b0610a13039d904b13bf334e7a | Triage

Sharing

General

Target

dd65e206a41ef1cc3643931b86a0a1c0N.exe
Size

245KB
Sample

240814-lsztfavhjh
MD5

dd65e206a41ef1cc3643931b86a0a1c0
SHA1

faf78e60a107d320ebdad3b5bde43b492fd2fd9d
SHA256

b1e460a6aa70b976a1c65f7006a1958ba0e8a2b0610a13039d904b13bf334e7a
SHA512

621c1794d0bb9838accea694fa0223ff313a2cd282bf93d02256d63ebf0a160fea701d701b497a8f2fb90907bf7afedd3523b832500a15cfde9c1be13b007c99
SSDEEP

3072:a0w3jLueztXGG5zKSLHEUwago+bAr+Qka:aNuWPKSgUhgo0ArV

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  dd65e206a41ef1cc3643931b86a0a1c0N.exe
- Size
  
  245KB
- MD5
  
  dd65e206a41ef1cc3643931b86a0a1c0
- SHA1
  
  faf78e60a107d320ebdad3b5bde43b492fd2fd9d
- SHA256
  
  b1e460a6aa70b976a1c65f7006a1958ba0e8a2b0610a13039d904b13bf334e7a
- SHA512
  
  621c1794d0bb9838accea694fa0223ff313a2cd282bf93d02256d63ebf0a160fea701d701b497a8f2fb90907bf7afedd3523b832500a15cfde9c1be13b007c99
- SSDEEP
  
  3072:a0w3jLueztXGG5zKSLHEUwago+bAr+Qka:aNuWPKSgUhgo0ArV
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence