445083a5562ed11007393ec9fb7163671461249b97ad0c43ee67c1ecb6f1f6e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4fd1ae8c1f2f562dc34b267dc92498f0N.exe
Size

96KB
Sample

240817-1kyzha1eqj
MD5

4fd1ae8c1f2f562dc34b267dc92498f0
SHA1

fc6e242211f224aee700301466f720c0063e2ed8
SHA256

445083a5562ed11007393ec9fb7163671461249b97ad0c43ee67c1ecb6f1f6e4
SHA512

466b304cdc59bed648d3c29ad7da2a69438a8b48b6a9efc92dd48612c147be793abb3ee88a42c006839517e00387e38e51557641ac73559773d5adb4960ae49f
SSDEEP

1536:tSD5wadRsBRmssM8poYX1oIbEhpn3RCSOzBWe9MbinV39+ChnSdFFn7Elz45zFVI:wtZ2BEjpLoc4n3RN8WAMbqV39ThSdn7M

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  4fd1ae8c1f2f562dc34b267dc92498f0N.exe
- Size
  
  96KB
- MD5
  
  4fd1ae8c1f2f562dc34b267dc92498f0
- SHA1
  
  fc6e242211f224aee700301466f720c0063e2ed8
- SHA256
  
  445083a5562ed11007393ec9fb7163671461249b97ad0c43ee67c1ecb6f1f6e4
- SHA512
  
  466b304cdc59bed648d3c29ad7da2a69438a8b48b6a9efc92dd48612c147be793abb3ee88a42c006839517e00387e38e51557641ac73559773d5adb4960ae49f
- SSDEEP
  
  1536:tSD5wadRsBRmssM8poYX1oIbEhpn3RCSOzBWe9MbinV39+ChnSdFFn7Elz45zFVI:wtZ2BEjpLoc4n3RN8WAMbqV39ThSdn7M
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence