0433f6d63b837d45a4e139322c6c613fa72c49102537ab1f471a0ea7085d6c73 | Triage

Sharing

General

Target

f3878ae0f4056e7b4b1c66e3ea26a000N.exe
Size

88KB
Sample

240822-sdp41swbql
MD5

f3878ae0f4056e7b4b1c66e3ea26a000
SHA1

85d58d77b02eae3bf7786727f6c1dbac6266ed23
SHA256

0433f6d63b837d45a4e139322c6c613fa72c49102537ab1f471a0ea7085d6c73
SHA512

fa71497381cb030f84f3e4bc58e647937366eb99badaa21af447fbe105163ab32e7dcb1fae297df19b4cc898f4b084b985c64ca50ef0f4821e79f238b2da79ae
SSDEEP

1536:RtAvUbv3HmrEoxvR6sa0Ue19Y42NtAgnJL3PUnouy8L:Rtxb/5oxvRbY42NtAqzPkoutL

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f3878ae0f4056e7b4b1c66e3ea26a000N.exe
- Size
  
  88KB
- MD5
  
  f3878ae0f4056e7b4b1c66e3ea26a000
- SHA1
  
  85d58d77b02eae3bf7786727f6c1dbac6266ed23
- SHA256
  
  0433f6d63b837d45a4e139322c6c613fa72c49102537ab1f471a0ea7085d6c73
- SHA512
  
  fa71497381cb030f84f3e4bc58e647937366eb99badaa21af447fbe105163ab32e7dcb1fae297df19b4cc898f4b084b985c64ca50ef0f4821e79f238b2da79ae
- SSDEEP
  
  1536:RtAvUbv3HmrEoxvR6sa0Ue19Y42NtAgnJL3PUnouy8L:Rtxb/5oxvRbY42NtAqzPkoutL
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence