310fe9697a936d4bb79af1aeabf8b7fb5f3b46bdfe5af67264b05e353c02ed84 | Triage

Sharing

General

Target

ab8306f1774aff656044d24cb602faf0N.exe
Size

661KB
Sample

240821-j4g2nasarl
MD5

ab8306f1774aff656044d24cb602faf0
SHA1

4248b143e40fffa0fb3a00752c0975b625a6bab4
SHA256

310fe9697a936d4bb79af1aeabf8b7fb5f3b46bdfe5af67264b05e353c02ed84
SHA512

ebfab41b70c76508d2ef90b684e0c9d0d02cc378b0caacf9655b2493f3a7f349e6a89659128676fe4c4164d330d19db5b517ae9a00030922bc99a2697ff74bf0
SSDEEP

12288:pc7pV6yYP4rbpV6yYPg058KpV6yYPNUir2MhNl6zX3w9As/xO23WM6tJmDYjmR5I:pSW4XWleKWNUir2MhNl6zX3w9As/xO2E

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ab8306f1774aff656044d24cb602faf0N.exe
- Size
  
  661KB
- MD5
  
  ab8306f1774aff656044d24cb602faf0
- SHA1
  
  4248b143e40fffa0fb3a00752c0975b625a6bab4
- SHA256
  
  310fe9697a936d4bb79af1aeabf8b7fb5f3b46bdfe5af67264b05e353c02ed84
- SHA512
  
  ebfab41b70c76508d2ef90b684e0c9d0d02cc378b0caacf9655b2493f3a7f349e6a89659128676fe4c4164d330d19db5b517ae9a00030922bc99a2697ff74bf0
- SSDEEP
  
  12288:pc7pV6yYP4rbpV6yYPg058KpV6yYPNUir2MhNl6zX3w9As/xO23WM6tJmDYjmR5I:pSW4XWleKWNUir2MhNl6zX3w9As/xO2E
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence