a2b2434c7fd87400e14fa2df19a46cda9cfa6d653a48ac7db3e0b4b737cc64cf | Triage

Sharing

General

Target

d5db48f4a17f31085a3a8fd87e24fb90N.exe
Size

80KB
Sample

240818-vmk8jaxejp
MD5

d5db48f4a17f31085a3a8fd87e24fb90
SHA1

cf0bf2418d8c5c2e26d657f8792cf60bd5c4e8d2
SHA256

a2b2434c7fd87400e14fa2df19a46cda9cfa6d653a48ac7db3e0b4b737cc64cf
SHA512

3194f047d6d88d79a418d0123492d88a9f4fe82e95977e7ab4275578de14f2bb6c18160994c1d1ff970c640f2e6f88d23f58c9b2102a70821e52d1ce90cb5516
SSDEEP

1536:XVQarSZBy58Qdf5/LDMn2us53XnwvMdk7cRQAORJJ5R2xOSC4BG:XugvSQPruSHGYk4etrJ5wxO344

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d5db48f4a17f31085a3a8fd87e24fb90N.exe
- Size
  
  80KB
- MD5
  
  d5db48f4a17f31085a3a8fd87e24fb90
- SHA1
  
  cf0bf2418d8c5c2e26d657f8792cf60bd5c4e8d2
- SHA256
  
  a2b2434c7fd87400e14fa2df19a46cda9cfa6d653a48ac7db3e0b4b737cc64cf
- SHA512
  
  3194f047d6d88d79a418d0123492d88a9f4fe82e95977e7ab4275578de14f2bb6c18160994c1d1ff970c640f2e6f88d23f58c9b2102a70821e52d1ce90cb5516
- SSDEEP
  
  1536:XVQarSZBy58Qdf5/LDMn2us53XnwvMdk7cRQAORJJ5R2xOSC4BG:XugvSQPruSHGYk4etrJ5wxO344
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence