59b802ba8e0791eb860dd35aa373b31b1e121358bab73d25c8309d500a4f01a3 | Triage

Sharing

General

Target

195d35e83bdf9949c80e16b417609f20N.exe
Size

96KB
Sample

240818-np576avdnq
MD5

195d35e83bdf9949c80e16b417609f20
SHA1

d8b9b628b324d20ba9f8bd5c61c6379b12c2f810
SHA256

59b802ba8e0791eb860dd35aa373b31b1e121358bab73d25c8309d500a4f01a3
SHA512

d823d1ae753475ebdd95f28e3ef7bfb44ad3ed4b399f83674f4c5fea4640ddfb4dee197146a315a5127f48e2cad00b247c27154e01c1bb459ad53ea3e85c2524
SSDEEP

1536:/xG2KOSOkxoRaTG+rF20L6GWd2Lz3ZS/FCb4noaJSNzJO/:/x3KOs++BlWuz3ZSs4noakXO/

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  195d35e83bdf9949c80e16b417609f20N.exe
- Size
  
  96KB
- MD5
  
  195d35e83bdf9949c80e16b417609f20
- SHA1
  
  d8b9b628b324d20ba9f8bd5c61c6379b12c2f810
- SHA256
  
  59b802ba8e0791eb860dd35aa373b31b1e121358bab73d25c8309d500a4f01a3
- SHA512
  
  d823d1ae753475ebdd95f28e3ef7bfb44ad3ed4b399f83674f4c5fea4640ddfb4dee197146a315a5127f48e2cad00b247c27154e01c1bb459ad53ea3e85c2524
- SSDEEP
  
  1536:/xG2KOSOkxoRaTG+rF20L6GWd2Lz3ZS/FCb4noaJSNzJO/:/x3KOs++BlWuz3ZSs4noakXO/
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence