40fee5ba4c07bf6909bdb13c7b11a9925bbfc73c846d0392da716e98969072eb | Triage

Sharing

General

Target

d7bd1cffa7ca8943b21266fb70704fb0N.exe
Size

77KB
Sample

240822-raqqps1amb
MD5

d7bd1cffa7ca8943b21266fb70704fb0
SHA1

a8c233c690812e689dd42190fbca09b158b51b89
SHA256

40fee5ba4c07bf6909bdb13c7b11a9925bbfc73c846d0392da716e98969072eb
SHA512

17a56b01b8d59994035188320e916cfdba1966acafe1b09095f7c9aad4bb62ba4e864952e656443fb427fa63fa0db25a0f6284b490ced3932caafbad0eb9e357
SSDEEP

1536:jTdIpv7SfGqkjj3982EKNNAM2Lt2wfi+TjRC/D:jTdIpv7DFjz980NsIwf1TjYD

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d7bd1cffa7ca8943b21266fb70704fb0N.exe
- Size
  
  77KB
- MD5
  
  d7bd1cffa7ca8943b21266fb70704fb0
- SHA1
  
  a8c233c690812e689dd42190fbca09b158b51b89
- SHA256
  
  40fee5ba4c07bf6909bdb13c7b11a9925bbfc73c846d0392da716e98969072eb
- SHA512
  
  17a56b01b8d59994035188320e916cfdba1966acafe1b09095f7c9aad4bb62ba4e864952e656443fb427fa63fa0db25a0f6284b490ced3932caafbad0eb9e357
- SSDEEP
  
  1536:jTdIpv7SfGqkjj3982EKNNAM2Lt2wfi+TjRC/D:jTdIpv7DFjz980NsIwf1TjYD
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence