88be16241debef72683e201514a0993f08e8edb85abfa6c11473383064cb998b | Triage

Sharing

General

Target

a3686dbada8149d52ee19ea8f4b48040N.exe
Size

128KB
Sample

240822-tkegjawckg
MD5

a3686dbada8149d52ee19ea8f4b48040
SHA1

976ee66e35c309a4d3eacd6e438f58cb718dcc6d
SHA256

88be16241debef72683e201514a0993f08e8edb85abfa6c11473383064cb998b
SHA512

88ba3fb2d3f306ea1fb08d3acdf279e1addb8c5527080a015ea8d88d66d05f5ac69b422a1d8844da6b2281b772d3d960810b5056213aa9187f10fefcce52c257
SSDEEP

3072:PeRM1TMOve2lj9pui6yYPaI7DehizrVtN:Pe61pG6pui6yYPaIGc

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a3686dbada8149d52ee19ea8f4b48040N.exe
- Size
  
  128KB
- MD5
  
  a3686dbada8149d52ee19ea8f4b48040
- SHA1
  
  976ee66e35c309a4d3eacd6e438f58cb718dcc6d
- SHA256
  
  88be16241debef72683e201514a0993f08e8edb85abfa6c11473383064cb998b
- SHA512
  
  88ba3fb2d3f306ea1fb08d3acdf279e1addb8c5527080a015ea8d88d66d05f5ac69b422a1d8844da6b2281b772d3d960810b5056213aa9187f10fefcce52c257
- SSDEEP
  
  3072:PeRM1TMOve2lj9pui6yYPaI7DehizrVtN:Pe61pG6pui6yYPaIGc
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence