504b2b144d6333e291edec607981d61000ecbc7355042cfe2d38355f1734eb92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb64712fce553acc56030e386fc1f390N.exe
Size

163KB
Sample

240820-wd7kvayhpq
MD5

fb64712fce553acc56030e386fc1f390
SHA1

9c84306573a0ca9a4d87e2234bb9482b9d57ce19
SHA256

504b2b144d6333e291edec607981d61000ecbc7355042cfe2d38355f1734eb92
SHA512

a8d7fe0c58d358f4f2cd1d83230e233fcda69b9320cc80be8546669dc7dede7eeec6f8aaa198f9b3aafece41024c6b778cf5488e9b2f495b4cb9349fc7b06b1e
SSDEEP

1536:P3aC0LeOrugF56La8ruUX7DPw+95+++++++qSTkbilProNVU4qNVUrk/9QbfBr+E:b9pDT95+++++++HTk+ltOrWKDBr+yJb

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fb64712fce553acc56030e386fc1f390N.exe
- Size
  
  163KB
- MD5
  
  fb64712fce553acc56030e386fc1f390
- SHA1
  
  9c84306573a0ca9a4d87e2234bb9482b9d57ce19
- SHA256
  
  504b2b144d6333e291edec607981d61000ecbc7355042cfe2d38355f1734eb92
- SHA512
  
  a8d7fe0c58d358f4f2cd1d83230e233fcda69b9320cc80be8546669dc7dede7eeec6f8aaa198f9b3aafece41024c6b778cf5488e9b2f495b4cb9349fc7b06b1e
- SSDEEP
  
  1536:P3aC0LeOrugF56La8ruUX7DPw+95+++++++qSTkbilProNVU4qNVUrk/9QbfBr+E:b9pDT95+++++++HTk+ltOrWKDBr+yJb
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence