e463428834b065bd4c9248a56f202edeff88b62185e0437c123cdb3de5946d6a | Triage

Sharing

General

Target

63bd91a9240e1ec9d5b17f8d064255b0N.exe
Size

406KB
Sample

240814-x9fbxavejr
MD5

63bd91a9240e1ec9d5b17f8d064255b0
SHA1

0429bd9eaf4a1657719fd4239723c5f0a7263838
SHA256

e463428834b065bd4c9248a56f202edeff88b62185e0437c123cdb3de5946d6a
SHA512

a5bcd28844c3133b40a050353b9c340084824645cd3b9f836a790668c63318450a53d9483e4990bcf3ba17a58a5bcfceab363527510dce86dadb8fb3827252a1
SSDEEP

6144:UQOIZ9UdU5U5Xj1XH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:UQOIZ9LMp3Ma3M3MvD3Mq3B3Mo3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  63bd91a9240e1ec9d5b17f8d064255b0N.exe
- Size
  
  406KB
- MD5
  
  63bd91a9240e1ec9d5b17f8d064255b0
- SHA1
  
  0429bd9eaf4a1657719fd4239723c5f0a7263838
- SHA256
  
  e463428834b065bd4c9248a56f202edeff88b62185e0437c123cdb3de5946d6a
- SHA512
  
  a5bcd28844c3133b40a050353b9c340084824645cd3b9f836a790668c63318450a53d9483e4990bcf3ba17a58a5bcfceab363527510dce86dadb8fb3827252a1
- SSDEEP
  
  6144:UQOIZ9UdU5U5Xj1XH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:UQOIZ9LMp3Ma3M3MvD3Mq3B3Mo3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence