24fa089ca63ab6a092c01bc1badf4aa0262e29ee17dde209e42fcd9de262ecbc | Triage

Sharing

General

Target

fc00f2e3bb8298a271b0f47a9cffdf50N.exe
Size

479KB
Sample

240821-e857tstfnm
MD5

fc00f2e3bb8298a271b0f47a9cffdf50
SHA1

fb0c890c467f45ffab1aafe5f4e6dabb4656e482
SHA256

24fa089ca63ab6a092c01bc1badf4aa0262e29ee17dde209e42fcd9de262ecbc
SHA512

85781779d6ca9fa6820d5de17b6a2a70f5d5f56d38c89b7324cab2f6a6d6885d13b9d2bd0944aa095bcfa99c61a81b4ff67a77372b70f97e814ba7bbee090102
SSDEEP

6144:nZV4+6CdV6OaYFPOwXYrMdlvkGr0f+uPOwXYrMdl2MPnhd8+ZDI:ZvdVHatwIaJwISfPI

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fc00f2e3bb8298a271b0f47a9cffdf50N.exe
- Size
  
  479KB
- MD5
  
  fc00f2e3bb8298a271b0f47a9cffdf50
- SHA1
  
  fb0c890c467f45ffab1aafe5f4e6dabb4656e482
- SHA256
  
  24fa089ca63ab6a092c01bc1badf4aa0262e29ee17dde209e42fcd9de262ecbc
- SHA512
  
  85781779d6ca9fa6820d5de17b6a2a70f5d5f56d38c89b7324cab2f6a6d6885d13b9d2bd0944aa095bcfa99c61a81b4ff67a77372b70f97e814ba7bbee090102
- SSDEEP
  
  6144:nZV4+6CdV6OaYFPOwXYrMdlvkGr0f+uPOwXYrMdl2MPnhd8+ZDI:ZvdVHatwIaJwISfPI
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence