838ad2eaa51b8a7d01c9b57e08c7b4cd4d3364e7644e8b4a7d55ac3244f47810 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c72d6ed06210e9ec7deecb5625c00760N.exe
Size

112KB
Sample

240822-sngkmaterf
MD5

c72d6ed06210e9ec7deecb5625c00760
SHA1

ad52a3dc21ee2c77fc4d9394d9ec0a1232c6b8e5
SHA256

838ad2eaa51b8a7d01c9b57e08c7b4cd4d3364e7644e8b4a7d55ac3244f47810
SHA512

961f045406face8f84cd5851b5a0e8dc10b78514dbd3f1b3d2e4bf6f024c2e97309553283574206507f50636ed3cd5eeae4c2ac457522a0fe9d03ae5707ef7fd
SSDEEP

1536:bSIjJJrozBAG2omz0Kx1DFiVsnauAwh+zD2TPikRynlypv8LIuCseNIQ:FjnS3+nJFiIAwjT+lc802eSQ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c72d6ed06210e9ec7deecb5625c00760N.exe
- Size
  
  112KB
- MD5
  
  c72d6ed06210e9ec7deecb5625c00760
- SHA1
  
  ad52a3dc21ee2c77fc4d9394d9ec0a1232c6b8e5
- SHA256
  
  838ad2eaa51b8a7d01c9b57e08c7b4cd4d3364e7644e8b4a7d55ac3244f47810
- SHA512
  
  961f045406face8f84cd5851b5a0e8dc10b78514dbd3f1b3d2e4bf6f024c2e97309553283574206507f50636ed3cd5eeae4c2ac457522a0fe9d03ae5707ef7fd
- SSDEEP
  
  1536:bSIjJJrozBAG2omz0Kx1DFiVsnauAwh+zD2TPikRynlypv8LIuCseNIQ:FjnS3+nJFiIAwjT+lc802eSQ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence