809cca6da630b8f2e63fa60949bb7300ad58c11c9444e3e2eb12ff72515dca64 | Triage

Sharing

General

Target

9983bc3b57abf4e0a5e412ff2e2449b0N.exe
Size

95KB
Sample

240822-kvwn5a1enl
MD5

9983bc3b57abf4e0a5e412ff2e2449b0
SHA1

02c622a503482f213282e020d12ef33ef3babf82
SHA256

809cca6da630b8f2e63fa60949bb7300ad58c11c9444e3e2eb12ff72515dca64
SHA512

e0ae4a8fc383284df103ee09d00472bc17433c76195f72be837799e246b09b810e4fc7bd9f9d59a456af43a9982102a8f5122252626f702cd7ecf4fff4fb54a0
SSDEEP

1536:f3Hz+As+0TCZODal8PG906lqRtWijFOJHeS3MuQrtqbUKmz1Mdri1qRS2LgdOM68:f3Fp0OZODalHRcR2J+S3M9yNjLgdDrLD

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  9983bc3b57abf4e0a5e412ff2e2449b0N.exe
- Size
  
  95KB
- MD5
  
  9983bc3b57abf4e0a5e412ff2e2449b0
- SHA1
  
  02c622a503482f213282e020d12ef33ef3babf82
- SHA256
  
  809cca6da630b8f2e63fa60949bb7300ad58c11c9444e3e2eb12ff72515dca64
- SHA512
  
  e0ae4a8fc383284df103ee09d00472bc17433c76195f72be837799e246b09b810e4fc7bd9f9d59a456af43a9982102a8f5122252626f702cd7ecf4fff4fb54a0
- SSDEEP
  
  1536:f3Hz+As+0TCZODal8PG906lqRtWijFOJHeS3MuQrtqbUKmz1Mdri1qRS2LgdOM68:f3Fp0OZODalHRcR2J+S3M9yNjLgdDrLD
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence