282e7020d1a793c9ee6e34312a00552c11641bfd0bfc248b8df1b5fd6bbdc0b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6b8de6f9f7a5d8b0d84ad25eb4925a80N.exe
Size

621KB
Sample

240816-1hxcwsscpr
MD5

6b8de6f9f7a5d8b0d84ad25eb4925a80
SHA1

d39f2eeca2c0e2029639b6252d173eb7e3005584
SHA256

282e7020d1a793c9ee6e34312a00552c11641bfd0bfc248b8df1b5fd6bbdc0b8
SHA512

6328265bca5a84326aa86e78ba2eeb8a26718f836c6336531989f2e078668613081798f7e1d46100121d1368c40a042303fb28bfd38e9de0bbdbe55132f227f2
SSDEEP

6144:1mSUslh44d5nngQFZpX3gP7vB9ap0txtu7oRM7MzIaXPAkfEIC+FDnxpEQ7oIr9B:1mLsla4bgWXA3KK0s+ygQi14B0tS

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  6b8de6f9f7a5d8b0d84ad25eb4925a80N.exe
- Size
  
  621KB
- MD5
  
  6b8de6f9f7a5d8b0d84ad25eb4925a80
- SHA1
  
  d39f2eeca2c0e2029639b6252d173eb7e3005584
- SHA256
  
  282e7020d1a793c9ee6e34312a00552c11641bfd0bfc248b8df1b5fd6bbdc0b8
- SHA512
  
  6328265bca5a84326aa86e78ba2eeb8a26718f836c6336531989f2e078668613081798f7e1d46100121d1368c40a042303fb28bfd38e9de0bbdbe55132f227f2
- SSDEEP
  
  6144:1mSUslh44d5nngQFZpX3gP7vB9ap0txtu7oRM7MzIaXPAkfEIC+FDnxpEQ7oIr9B:1mLsla4bgWXA3KK0s+ygQi14B0tS
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2