53b6a15f4a6f06563c6bda03c09be3e31cff27fa57ef4ecd5db5fd44f3b225fa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

274c9ed60de95fcbf3a0e772e3de14b0N.exe
Size

96KB
Sample

240819-ynzdbsshla
MD5

274c9ed60de95fcbf3a0e772e3de14b0
SHA1

e54968dc2ec6486584b5090e28ffd48016d5ef5c
SHA256

53b6a15f4a6f06563c6bda03c09be3e31cff27fa57ef4ecd5db5fd44f3b225fa
SHA512

a02f6a29782c7e1e566040c7035afc99cf94e2e3bed55eaa0a7ccbc964abfa68ed8958bd9db61f5cf25184cd1bf60f508968f5dcc1855bc7572a7c4d4cbf17e7
SSDEEP

1536:IrtDtGBRSd83jql6oWGy/Csts+sW3+VU+zL2l3jYF1duV9jojTIvjrH:Irn5TgHu+T3+VUzlzYF1d69jc0vf

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  274c9ed60de95fcbf3a0e772e3de14b0N.exe
- Size
  
  96KB
- MD5
  
  274c9ed60de95fcbf3a0e772e3de14b0
- SHA1
  
  e54968dc2ec6486584b5090e28ffd48016d5ef5c
- SHA256
  
  53b6a15f4a6f06563c6bda03c09be3e31cff27fa57ef4ecd5db5fd44f3b225fa
- SHA512
  
  a02f6a29782c7e1e566040c7035afc99cf94e2e3bed55eaa0a7ccbc964abfa68ed8958bd9db61f5cf25184cd1bf60f508968f5dcc1855bc7572a7c4d4cbf17e7
- SSDEEP
  
  1536:IrtDtGBRSd83jql6oWGy/Csts+sW3+VU+zL2l3jYF1duV9jojTIvjrH:Irn5TgHu+T3+VUzlzYF1d69jc0vf
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence