a0bf24d50f566c29f7f52b185564de923312666565240a38dec7b680a122a7c1 | Triage

Sharing

General

Target

f5628253e78d5b1bd62567862e67a5f0N.exe
Size

256KB
Sample

240821-q5eq9averk
MD5

f5628253e78d5b1bd62567862e67a5f0
SHA1

1c95279e741573f8053bbe434a25ca6a4ca1965b
SHA256

a0bf24d50f566c29f7f52b185564de923312666565240a38dec7b680a122a7c1
SHA512

4967762cbf089730f66952bb1cf81eef1d796a05854d2e500779985652312536741686b00ffbead0643998667af3b4676b19b63edf69297bc0e634dade9f9342
SSDEEP

3072:UgFBuslCrlaM/BZhYinvW0OF3kremwc/gHq/Wp+YmKfxgQdxvzSTsXXoT2971qqg:UgRKbZDIF3/fc/UmKyIxLDXXoq9FJZCX

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f5628253e78d5b1bd62567862e67a5f0N.exe
- Size
  
  256KB
- MD5
  
  f5628253e78d5b1bd62567862e67a5f0
- SHA1
  
  1c95279e741573f8053bbe434a25ca6a4ca1965b
- SHA256
  
  a0bf24d50f566c29f7f52b185564de923312666565240a38dec7b680a122a7c1
- SHA512
  
  4967762cbf089730f66952bb1cf81eef1d796a05854d2e500779985652312536741686b00ffbead0643998667af3b4676b19b63edf69297bc0e634dade9f9342
- SSDEEP
  
  3072:UgFBuslCrlaM/BZhYinvW0OF3kremwc/gHq/Wp+YmKfxgQdxvzSTsXXoT2971qqg:UgRKbZDIF3/fc/UmKyIxLDXXoq9FJZCX
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence