d7d110a1765bdffd15d7b7b90b1b03c3140ddf3ae9ae63e106b67cf649baa284 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc97c79f7cea9533f5785ebba4a4d5b0N.exe
Size

192KB
Sample

240821-2mn3ravblb
MD5

fc97c79f7cea9533f5785ebba4a4d5b0
SHA1

97b025617db13fb85dadd23b3c4e2523f76163f7
SHA256

d7d110a1765bdffd15d7b7b90b1b03c3140ddf3ae9ae63e106b67cf649baa284
SHA512

d17820a90ee8e3c64319f4c026449b4a975780e24414192dbd924925977cb945389e7c7b90034af728311a7cf6724e43e434dbf946d422b06a49fd81d10b8a71
SSDEEP

3072:78OerHsRMtU3xdUeM5nLoYDGNlib5qfpfGU4lfirgjZXmK:OHu3PML7GNlighD4lTjZXN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fc97c79f7cea9533f5785ebba4a4d5b0N.exe
- Size
  
  192KB
- MD5
  
  fc97c79f7cea9533f5785ebba4a4d5b0
- SHA1
  
  97b025617db13fb85dadd23b3c4e2523f76163f7
- SHA256
  
  d7d110a1765bdffd15d7b7b90b1b03c3140ddf3ae9ae63e106b67cf649baa284
- SHA512
  
  d17820a90ee8e3c64319f4c026449b4a975780e24414192dbd924925977cb945389e7c7b90034af728311a7cf6724e43e434dbf946d422b06a49fd81d10b8a71
- SSDEEP
  
  3072:78OerHsRMtU3xdUeM5nLoYDGNlib5qfpfGU4lfirgjZXmK:OHu3PML7GNlighD4lTjZXN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence