b18dd91376ae4237e36bca62b48ee0b79d08b3c879ac9ce3f005fd17b79cdb83 | Triage

Sharing

General

Target

ad3fdb5c19386f9f46a2386dc9f86560N.exe
Size

357KB
Sample

240820-lbdjwatgjf
MD5

ad3fdb5c19386f9f46a2386dc9f86560
SHA1

f089eb6cfb91694659557d65ecc26f9527346ea3
SHA256

b18dd91376ae4237e36bca62b48ee0b79d08b3c879ac9ce3f005fd17b79cdb83
SHA512

6b766c3f04cc9cf9c44ffe326335439a0ac9ba5b77412be90ef7ed006dee65f160251c0a39b17c70d74d4ac30a91c044d9fcafd31b5c12dd1c576b3d3c050937
SSDEEP

6144:lOPkoYOvw7OQbCT1n6xJmPMwZoXpKtCe8AUReheFlfSZR0SvsuFrGoyeg3kl+fid:Wo7OjZoXpKtCe1eehil6ZR5ZrQeg3klx

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ad3fdb5c19386f9f46a2386dc9f86560N.exe
- Size
  
  357KB
- MD5
  
  ad3fdb5c19386f9f46a2386dc9f86560
- SHA1
  
  f089eb6cfb91694659557d65ecc26f9527346ea3
- SHA256
  
  b18dd91376ae4237e36bca62b48ee0b79d08b3c879ac9ce3f005fd17b79cdb83
- SHA512
  
  6b766c3f04cc9cf9c44ffe326335439a0ac9ba5b77412be90ef7ed006dee65f160251c0a39b17c70d74d4ac30a91c044d9fcafd31b5c12dd1c576b3d3c050937
- SSDEEP
  
  6144:lOPkoYOvw7OQbCT1n6xJmPMwZoXpKtCe8AUReheFlfSZR0SvsuFrGoyeg3kl+fid:Wo7OjZoXpKtCe1eehil6ZR5ZrQeg3klx
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence