d9d500bc0282395977b6fd62ce939eefd1398e1d2b3388a8200418a3f4f1ba86 | Triage

Sharing

General

Target

64363f0eec45a82f2b14a782c95e8940N.exe
Size

4.1MB
Sample

240821-m7hn5svdpd
MD5

64363f0eec45a82f2b14a782c95e8940
SHA1

3a34f2387f757ad7a7966ba93fb4c14ffa61d976
SHA256

d9d500bc0282395977b6fd62ce939eefd1398e1d2b3388a8200418a3f4f1ba86
SHA512

0709d99c3a2579b19f9c2e96e5223a609e4bf4f568a5367b33c6699a5a30bf2ce9a38ddca9fb0d0e6d7bad8f8fe708c364cbb3ef7c6f6b2fb16e2d3b0ace2816
SSDEEP

98304:+R0pI/IQlUoMPdmpSpY4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdmv5n9klRKN41v

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  64363f0eec45a82f2b14a782c95e8940N.exe
- Size
  
  4.1MB
- MD5
  
  64363f0eec45a82f2b14a782c95e8940
- SHA1
  
  3a34f2387f757ad7a7966ba93fb4c14ffa61d976
- SHA256
  
  d9d500bc0282395977b6fd62ce939eefd1398e1d2b3388a8200418a3f4f1ba86
- SHA512
  
  0709d99c3a2579b19f9c2e96e5223a609e4bf4f568a5367b33c6699a5a30bf2ce9a38ddca9fb0d0e6d7bad8f8fe708c364cbb3ef7c6f6b2fb16e2d3b0ace2816
- SSDEEP
  
  98304:+R0pI/IQlUoMPdmpSpY4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdmv5n9klRKN41v
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence