a3d804601b576a9f3a823bc361f7e0cfc41b6e36b4f6b2c9d79e851eab182098 | Triage

Sharing

General

Target

73f11cb45734c941ed311be86f880d00N.exe
Size

384KB
Sample

240820-v1devavapc
MD5

73f11cb45734c941ed311be86f880d00
SHA1

e2cac9426570ff0d5d2a0733841dbae84d672634
SHA256

a3d804601b576a9f3a823bc361f7e0cfc41b6e36b4f6b2c9d79e851eab182098
SHA512

493b23744077fdbb7b8ee4586bbac6b7d9918b3d56588c1f2db79beab2981e5ad92f65029506ffc2a56ffde85e80544507580c348ae0c818849eec9202c26c5c
SSDEEP

6144:6ExHgA6fbVcbbb+SKGyZ6YugQdjGG1wsKm6eBgdQbkoKTBEAz/6DG1ETdqvZNem+:7HhDnmGyXu1jGG1wsGeBgRTGAzciETdP

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  73f11cb45734c941ed311be86f880d00N.exe
- Size
  
  384KB
- MD5
  
  73f11cb45734c941ed311be86f880d00
- SHA1
  
  e2cac9426570ff0d5d2a0733841dbae84d672634
- SHA256
  
  a3d804601b576a9f3a823bc361f7e0cfc41b6e36b4f6b2c9d79e851eab182098
- SHA512
  
  493b23744077fdbb7b8ee4586bbac6b7d9918b3d56588c1f2db79beab2981e5ad92f65029506ffc2a56ffde85e80544507580c348ae0c818849eec9202c26c5c
- SSDEEP
  
  6144:6ExHgA6fbVcbbb+SKGyZ6YugQdjGG1wsKm6eBgdQbkoKTBEAz/6DG1ETdqvZNem+:7HhDnmGyXu1jGG1wsGeBgRTGAzciETdP
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence