b11599d42c701bd688b85a30db5ce1e4f4c474bc8354ffac3c2ccf81b692cbf3 | Triage

Sharing

General

Target

564a1ec7591963ddd53e0f9fbdc3baf0N.exe
Size

64KB
Sample

240818-n9pqxawdkn
MD5

564a1ec7591963ddd53e0f9fbdc3baf0
SHA1

a3f0cdb9212bcadd7a730737921f42cf7848b2d8
SHA256

b11599d42c701bd688b85a30db5ce1e4f4c474bc8354ffac3c2ccf81b692cbf3
SHA512

817b5f8a764a4bb3cf1a96e5e31ea9c29638c2c0347613e9a23dc782641270b10ce4b41b657fd06ffaf83f55316925fd822876d3f11ee06a3d28d5e9616a6fd6
SSDEEP

1536:iMdQJA3DMfSv9zFVFaXU0j+90l7VU2LT7RZR:72A3DMfSv93F4K0tTF

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  564a1ec7591963ddd53e0f9fbdc3baf0N.exe
- Size
  
  64KB
- MD5
  
  564a1ec7591963ddd53e0f9fbdc3baf0
- SHA1
  
  a3f0cdb9212bcadd7a730737921f42cf7848b2d8
- SHA256
  
  b11599d42c701bd688b85a30db5ce1e4f4c474bc8354ffac3c2ccf81b692cbf3
- SHA512
  
  817b5f8a764a4bb3cf1a96e5e31ea9c29638c2c0347613e9a23dc782641270b10ce4b41b657fd06ffaf83f55316925fd822876d3f11ee06a3d28d5e9616a6fd6
- SSDEEP
  
  1536:iMdQJA3DMfSv9zFVFaXU0j+90l7VU2LT7RZR:72A3DMfSv93F4K0tTF
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence