0a1c1484306e43f006c8aedd2a236f793de838d188b9747e0dc054e8bf3eefa6 | Triage

Sharing

General

Target

dc3037611cd04567242455bb1445a0d0N.exe
Size

60KB
Sample

240820-khw45asdmh
MD5

dc3037611cd04567242455bb1445a0d0
SHA1

9c682fa1688f2ceb014b6722a1b7f88833fb643d
SHA256

0a1c1484306e43f006c8aedd2a236f793de838d188b9747e0dc054e8bf3eefa6
SHA512

c8c86d486245a70d6f0685ea406110221d544baabf5eaa32caae9c9f2315a758f62cb2b66f56ff5814eeef9d1d88385b603c96785ade8bc426a61d6a1b18aea5
SSDEEP

1536:DyIF+4NTf/BbfbI4vZyM/gBUeANeviB86l1rs:+IDNThL84B5/gBUeAeiB86l1rs

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  dc3037611cd04567242455bb1445a0d0N.exe
- Size
  
  60KB
- MD5
  
  dc3037611cd04567242455bb1445a0d0
- SHA1
  
  9c682fa1688f2ceb014b6722a1b7f88833fb643d
- SHA256
  
  0a1c1484306e43f006c8aedd2a236f793de838d188b9747e0dc054e8bf3eefa6
- SHA512
  
  c8c86d486245a70d6f0685ea406110221d544baabf5eaa32caae9c9f2315a758f62cb2b66f56ff5814eeef9d1d88385b603c96785ade8bc426a61d6a1b18aea5
- SSDEEP
  
  1536:DyIF+4NTf/BbfbI4vZyM/gBUeANeviB86l1rs:+IDNThL84B5/gBUeAeiB86l1rs
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence