e59dd6cd2c4eb4a6df8415be34c995e61394c831b268e2baf3183df6ad0df801 | Triage

Sharing

General

Target

108b26b33ed5a0fa4dbe2e41723a9b20N.exe
Size

324KB
Sample

240820-lhxlbsydpj
MD5

108b26b33ed5a0fa4dbe2e41723a9b20
SHA1

d6754621a0fac37d033b518c551be799303f4742
SHA256

e59dd6cd2c4eb4a6df8415be34c995e61394c831b268e2baf3183df6ad0df801
SHA512

14f14ee2386db2204d8387ae775decb2f2dfbf17675bd7bd4dc4a7b541e9fd34e2fe669ded640d444094328a7741957c40b70ca46c516d07acf728bed5608a10
SSDEEP

6144:/Qkk5fRB9ezd5IF6rfBBcVPINRFYpfZvT6zAWq6JMf3us8ws:/QkkRRBcp5IFy5BcVPINRFYpfZvTmAW9

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  108b26b33ed5a0fa4dbe2e41723a9b20N.exe
- Size
  
  324KB
- MD5
  
  108b26b33ed5a0fa4dbe2e41723a9b20
- SHA1
  
  d6754621a0fac37d033b518c551be799303f4742
- SHA256
  
  e59dd6cd2c4eb4a6df8415be34c995e61394c831b268e2baf3183df6ad0df801
- SHA512
  
  14f14ee2386db2204d8387ae775decb2f2dfbf17675bd7bd4dc4a7b541e9fd34e2fe669ded640d444094328a7741957c40b70ca46c516d07acf728bed5608a10
- SSDEEP
  
  6144:/Qkk5fRB9ezd5IF6rfBBcVPINRFYpfZvT6zAWq6JMf3us8ws:/QkkRRBcp5IFy5BcVPINRFYpfZvTmAW9
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence