577d593247e1231fde384e643b165c471847a2c0ddd4666e4f593724bc01d233 | Triage

Sharing

General

Target

d1acb0271ea79452f2e0c32f35754110N.exe
Size

264KB
Sample

240822-kp7jfa1crm
MD5

d1acb0271ea79452f2e0c32f35754110
SHA1

2533cce0a91f413015690eb439411959580b38e1
SHA256

577d593247e1231fde384e643b165c471847a2c0ddd4666e4f593724bc01d233
SHA512

16c7497f8884eedceb4c4305795a4df2a2e38b13783745fe43e46a546f04be012db29d094d77bd639b6a9967ebbf9b3391e6239b42ea8ba5c6c902dbb70c13bc
SSDEEP

6144:QAAsohxd2Quohdbd0zscwIGUKfvUJ43ewmxteZekR+1b/KVC0C:Q/xdzZdxGwsYI

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d1acb0271ea79452f2e0c32f35754110N.exe
- Size
  
  264KB
- MD5
  
  d1acb0271ea79452f2e0c32f35754110
- SHA1
  
  2533cce0a91f413015690eb439411959580b38e1
- SHA256
  
  577d593247e1231fde384e643b165c471847a2c0ddd4666e4f593724bc01d233
- SHA512
  
  16c7497f8884eedceb4c4305795a4df2a2e38b13783745fe43e46a546f04be012db29d094d77bd639b6a9967ebbf9b3391e6239b42ea8ba5c6c902dbb70c13bc
- SSDEEP
  
  6144:QAAsohxd2Quohdbd0zscwIGUKfvUJ43ewmxteZekR+1b/KVC0C:Q/xdzZdxGwsYI
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence