bd7c3fff59dd8e46edf38308e37e53f0d17b3d26081506c5612084550a54d391 | Triage

Sharing

General

Target

542d0269b949e05f0cb4a0ac0b7205d0N.exe
Size

96KB
Sample

240822-n21hfavhma
MD5

542d0269b949e05f0cb4a0ac0b7205d0
SHA1

a27ebab9d67d5c9173ebc5883b95a846d8cd0840
SHA256

bd7c3fff59dd8e46edf38308e37e53f0d17b3d26081506c5612084550a54d391
SHA512

c58c33357465933ccb0cf634a7d0ed2a08e4238e50b9caef275f2bd5ffbfffe1603c4e9bd633e11589bb11f1fb97d23d63ca23181b935b826ae8f16ef06e696c
SSDEEP

1536:GpfDeyHsk1BpqPUGp0/D4wEVcdZ2JVQBKoC/CKniTCvVAva61hLDnePhVsWzRADL:+LeyHsklst24wEVqZ2fQkbn1vVAva63l

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  542d0269b949e05f0cb4a0ac0b7205d0N.exe
- Size
  
  96KB
- MD5
  
  542d0269b949e05f0cb4a0ac0b7205d0
- SHA1
  
  a27ebab9d67d5c9173ebc5883b95a846d8cd0840
- SHA256
  
  bd7c3fff59dd8e46edf38308e37e53f0d17b3d26081506c5612084550a54d391
- SHA512
  
  c58c33357465933ccb0cf634a7d0ed2a08e4238e50b9caef275f2bd5ffbfffe1603c4e9bd633e11589bb11f1fb97d23d63ca23181b935b826ae8f16ef06e696c
- SSDEEP
  
  1536:GpfDeyHsk1BpqPUGp0/D4wEVcdZ2JVQBKoC/CKniTCvVAva61hLDnePhVsWzRADL:+LeyHsklst24wEVqZ2fQkbn1vVAva63l
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence