7f3fabdfa532052790d3acd30b9b189a1be6ba9b0dc448c57dee7baa29a67ea5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d4aae27e5e12f96387caa70abee58780N.exe
Size

73KB
Sample

240817-y95ggavfnb
MD5

d4aae27e5e12f96387caa70abee58780
SHA1

b32c9395c76dec5043f594f5774fd85808d847a1
SHA256

7f3fabdfa532052790d3acd30b9b189a1be6ba9b0dc448c57dee7baa29a67ea5
SHA512

e38b7e3cef7d1096dae75d50a1393782a54755a4c002847ff627ce5384a3c52e49d221c07ab4135064f6acd3cd397ec5c33d149f31c144f3c5348292bc5364f0
SSDEEP

1536:7lUPLkU4gx7EXqaxVAnNkxvYy6Yeza1isa+5YMkhohBM:7eYUkXlSnNBltKUAM

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d4aae27e5e12f96387caa70abee58780N.exe
- Size
  
  73KB
- MD5
  
  d4aae27e5e12f96387caa70abee58780
- SHA1
  
  b32c9395c76dec5043f594f5774fd85808d847a1
- SHA256
  
  7f3fabdfa532052790d3acd30b9b189a1be6ba9b0dc448c57dee7baa29a67ea5
- SHA512
  
  e38b7e3cef7d1096dae75d50a1393782a54755a4c002847ff627ce5384a3c52e49d221c07ab4135064f6acd3cd397ec5c33d149f31c144f3c5348292bc5364f0
- SSDEEP
  
  1536:7lUPLkU4gx7EXqaxVAnNkxvYy6Yeza1isa+5YMkhohBM:7eYUkXlSnNBltKUAM
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence