f8902d5aab39629f7df9ec97ea3a382f3333a92eb066fbacfcb32d33e3e4797b | Triage

Sharing

General

Target

8639f466c1b67d3d47f1cd981e84bea0N.exe
Size

80KB
Sample

240817-a2a1wszhjn
MD5

8639f466c1b67d3d47f1cd981e84bea0
SHA1

114b0a73c67b4a673301b7e777b4b14c6621bdd7
SHA256

f8902d5aab39629f7df9ec97ea3a382f3333a92eb066fbacfcb32d33e3e4797b
SHA512

e11dc5cae646a56a39f6410917c2b2d35a35afff260000bf7cd26dc4e49406e8ff40584c3465cfe92c3464869c46f2be85ad44feccc810a122e29f4b1b3c8852
SSDEEP

1536:kKNwkZZ0BnrBu6+vXQqfhgjV6XBrv2Ll3aIZTJ+7LhkiB0:kuDWF5Egx6x4l3aMU7ui

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8639f466c1b67d3d47f1cd981e84bea0N.exe
- Size
  
  80KB
- MD5
  
  8639f466c1b67d3d47f1cd981e84bea0
- SHA1
  
  114b0a73c67b4a673301b7e777b4b14c6621bdd7
- SHA256
  
  f8902d5aab39629f7df9ec97ea3a382f3333a92eb066fbacfcb32d33e3e4797b
- SHA512
  
  e11dc5cae646a56a39f6410917c2b2d35a35afff260000bf7cd26dc4e49406e8ff40584c3465cfe92c3464869c46f2be85ad44feccc810a122e29f4b1b3c8852
- SSDEEP
  
  1536:kKNwkZZ0BnrBu6+vXQqfhgjV6XBrv2Ll3aIZTJ+7LhkiB0:kuDWF5Egx6x4l3aMU7ui
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence