cc47d8dd5eb7df825f5f40afd3e439af4d24816bdb318c0a6cdb9d421d8d2136 | Triage

Sharing

General

Target

fed5d4f4b2925d3449adc954cb016a90N.exe
Size

1.1MB
Sample

240814-syavtszdpe
MD5

fed5d4f4b2925d3449adc954cb016a90
SHA1

eeda8ff1b07783b932d0171a1ac791e785f22eeb
SHA256

cc47d8dd5eb7df825f5f40afd3e439af4d24816bdb318c0a6cdb9d421d8d2136
SHA512

8632c34d6dba447eef7dca47f628aa5d3d538eb6afa4cd60eb2fff092e08aee1e099c30531059fcf8ea55206f9a5d8ffec12833ce060ada7dd3a0dd43a3a2273
SSDEEP

24576:d9mxxaxxn9lv3KGxxn9lq9mxxaxxn9lv3KGxxn9M:2xixH/txThxixH/txi

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fed5d4f4b2925d3449adc954cb016a90N.exe
- Size
  
  1.1MB
- MD5
  
  fed5d4f4b2925d3449adc954cb016a90
- SHA1
  
  eeda8ff1b07783b932d0171a1ac791e785f22eeb
- SHA256
  
  cc47d8dd5eb7df825f5f40afd3e439af4d24816bdb318c0a6cdb9d421d8d2136
- SHA512
  
  8632c34d6dba447eef7dca47f628aa5d3d538eb6afa4cd60eb2fff092e08aee1e099c30531059fcf8ea55206f9a5d8ffec12833ce060ada7dd3a0dd43a3a2273
- SSDEEP
  
  24576:d9mxxaxxn9lv3KGxxn9lq9mxxaxxn9lv3KGxxn9M:2xixH/txThxixH/txi
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence