a4c54d4721d54fb2ec715da32acbac58f9ec8a3844cc8b1631bca3e7fdf16008 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d099c2ea84b76f6d1edaa64401370780N.exe
Size

504KB
Sample

240818-3pykmsvdjn
MD5

d099c2ea84b76f6d1edaa64401370780
SHA1

ba48c2a0237599f2380e6a320f7973e959171828
SHA256

a4c54d4721d54fb2ec715da32acbac58f9ec8a3844cc8b1631bca3e7fdf16008
SHA512

aaab3fb468b6bc10d15ccfccce63aa6552b0c4b2080ae10b9bc4f31bec5c5285a9b5d5f3431e67e8d56d66f39a3387c27f2d3c2aeaa87838a878b56967cf26bc
SSDEEP

6144:sF7CvYU4ZlVrtv35CPXbo92ynn8sbeWD2/wH5CPXbo92ynnZlVrtv35CPXbo92yC:eumHRFbe7QFHRFbe73

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d099c2ea84b76f6d1edaa64401370780N.exe
- Size
  
  504KB
- MD5
  
  d099c2ea84b76f6d1edaa64401370780
- SHA1
  
  ba48c2a0237599f2380e6a320f7973e959171828
- SHA256
  
  a4c54d4721d54fb2ec715da32acbac58f9ec8a3844cc8b1631bca3e7fdf16008
- SHA512
  
  aaab3fb468b6bc10d15ccfccce63aa6552b0c4b2080ae10b9bc4f31bec5c5285a9b5d5f3431e67e8d56d66f39a3387c27f2d3c2aeaa87838a878b56967cf26bc
- SSDEEP
  
  6144:sF7CvYU4ZlVrtv35CPXbo92ynn8sbeWD2/wH5CPXbo92ynnZlVrtv35CPXbo92yC:eumHRFbe7QFHRFbe73
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence