3cdbedc457b8a2fd86b7bc10fcbe388a50adde038db052d6817ecf8d1eef506a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4f511afa12076d9790f2069f01913a40N.exe
Size

93KB
Sample

240818-mqlpgazcrd
MD5

4f511afa12076d9790f2069f01913a40
SHA1

2be5515291aaf12caac15fbf13aecab5c2fbb83d
SHA256

3cdbedc457b8a2fd86b7bc10fcbe388a50adde038db052d6817ecf8d1eef506a
SHA512

7aaf9ec79ee7424e6f179f3a1b072ed8e3138c6ce9fb964c8bfafe79c9101cf5c0274dd819ceab186f3f91eca9d65a3b710a09be5b6cd9c9da0f59f7cd01e780
SSDEEP

1536:ipykIADq8MN4U6y0OQbut7B+54XXJ1e86csRQoRkRLJzeLD9N0iQGRNQR8RyV+3K:39ADq8MN4U65OQatln+teoSJdEN0s4Wg

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  4f511afa12076d9790f2069f01913a40N.exe
- Size
  
  93KB
- MD5
  
  4f511afa12076d9790f2069f01913a40
- SHA1
  
  2be5515291aaf12caac15fbf13aecab5c2fbb83d
- SHA256
  
  3cdbedc457b8a2fd86b7bc10fcbe388a50adde038db052d6817ecf8d1eef506a
- SHA512
  
  7aaf9ec79ee7424e6f179f3a1b072ed8e3138c6ce9fb964c8bfafe79c9101cf5c0274dd819ceab186f3f91eca9d65a3b710a09be5b6cd9c9da0f59f7cd01e780
- SSDEEP
  
  1536:ipykIADq8MN4U6y0OQbut7B+54XXJ1e86csRQoRkRLJzeLD9N0iQGRNQR8RyV+3K:39ADq8MN4U65OQatln+teoSJdEN0s4Wg
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence