15dd470b1ea2eb7d56c60a6428272772ebb4478b829ac8f40bdedf744ebd2868 | Triage

Sharing

General

Target

f73cfcc152098aa7b0577ef22a6ac540N.exe
Size

93KB
Sample

240822-m1qq6stajc
MD5

f73cfcc152098aa7b0577ef22a6ac540
SHA1

8ac6db938287b070298da197185fc26f713f67cb
SHA256

15dd470b1ea2eb7d56c60a6428272772ebb4478b829ac8f40bdedf744ebd2868
SHA512

4e72ba2de7a54acbcf2b105ba64850ec1ff8c081bf8ae5eb7fc9dd3f00f19dcaff129597fe55cba50ad1f0f48eed2d4bd394e60adf8b2d570423256c7548682e
SSDEEP

1536:r81k7BeCq7RQ6jjzX+yX97E09gtqsRQDRkRLJzeLD9N0iQGRNQR8RyV+32r:rUDP7RHvOa9759MReDSJdEN0s4WE+3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f73cfcc152098aa7b0577ef22a6ac540N.exe
- Size
  
  93KB
- MD5
  
  f73cfcc152098aa7b0577ef22a6ac540
- SHA1
  
  8ac6db938287b070298da197185fc26f713f67cb
- SHA256
  
  15dd470b1ea2eb7d56c60a6428272772ebb4478b829ac8f40bdedf744ebd2868
- SHA512
  
  4e72ba2de7a54acbcf2b105ba64850ec1ff8c081bf8ae5eb7fc9dd3f00f19dcaff129597fe55cba50ad1f0f48eed2d4bd394e60adf8b2d570423256c7548682e
- SSDEEP
  
  1536:r81k7BeCq7RQ6jjzX+yX97E09gtqsRQDRkRLJzeLD9N0iQGRNQR8RyV+32r:rUDP7RHvOa9759MReDSJdEN0s4WE+3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence