1a1e150ad5dfde8ef59c837dcb87cae92a4e0fbdfd93a6bbd3f23a75d4748a9a | Triage

Sharing

General

Target

8811ce491b070472360fb02fe3df3e40N.exe
Size

245KB
Sample

240817-mkhqma1cjc
MD5

8811ce491b070472360fb02fe3df3e40
SHA1

760b6bb1d916781ebb8f8a31c8e6e73385883c50
SHA256

1a1e150ad5dfde8ef59c837dcb87cae92a4e0fbdfd93a6bbd3f23a75d4748a9a
SHA512

98ed28cfae12194f36d1227ed4239e21cf4b6652b6ead36b3ff5a226eaef0dffe4c36ab35c4b291f3e66feaeddc62168283b6f0955f51763d76b114a7c43e314
SSDEEP

1536:CSGlc/eBK+sYarcJ0ap77GaKBComc/VuxjiH7R/4cXeXvubKrFEwMEwKhbArEwK1:Cs/V+EM70kxjiH7Rwago+bAr+Qka

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8811ce491b070472360fb02fe3df3e40N.exe
- Size
  
  245KB
- MD5
  
  8811ce491b070472360fb02fe3df3e40
- SHA1
  
  760b6bb1d916781ebb8f8a31c8e6e73385883c50
- SHA256
  
  1a1e150ad5dfde8ef59c837dcb87cae92a4e0fbdfd93a6bbd3f23a75d4748a9a
- SHA512
  
  98ed28cfae12194f36d1227ed4239e21cf4b6652b6ead36b3ff5a226eaef0dffe4c36ab35c4b291f3e66feaeddc62168283b6f0955f51763d76b114a7c43e314
- SSDEEP
  
  1536:CSGlc/eBK+sYarcJ0ap77GaKBComc/VuxjiH7R/4cXeXvubKrFEwMEwKhbArEwK1:Cs/V+EM70kxjiH7Rwago+bAr+Qka
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence