81699125111c82e85c80fd817d7bd3c39e4d263e0d69468928daf8a34b6a3d14 | Triage

Sharing

General

Target

8424fbec60b5a740758782ef6fa34430N.exe
Size

188KB
Sample

240822-yanpnstgng
MD5

8424fbec60b5a740758782ef6fa34430
SHA1

6854c6ff5ad718a367ed9bc3e1d4f1ee4f1bc744
SHA256

81699125111c82e85c80fd817d7bd3c39e4d263e0d69468928daf8a34b6a3d14
SHA512

fdd0c4a561465f334e71787534ea02d6a31cf24aa0c083843393af5111bb700eb73325af4c1e92b7aa51c67ab350d61247fb60f1626b65424441af87d79b023c
SSDEEP

3072:WW1RC0n1HsSctrfI1AerDtsr3vhqhEN4MAH+mbPepZBC8qzNJSKrDco:WE40n5sScBfI1AelhEN4MujGJoSoDco

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8424fbec60b5a740758782ef6fa34430N.exe
- Size
  
  188KB
- MD5
  
  8424fbec60b5a740758782ef6fa34430
- SHA1
  
  6854c6ff5ad718a367ed9bc3e1d4f1ee4f1bc744
- SHA256
  
  81699125111c82e85c80fd817d7bd3c39e4d263e0d69468928daf8a34b6a3d14
- SHA512
  
  fdd0c4a561465f334e71787534ea02d6a31cf24aa0c083843393af5111bb700eb73325af4c1e92b7aa51c67ab350d61247fb60f1626b65424441af87d79b023c
- SSDEEP
  
  3072:WW1RC0n1HsSctrfI1AerDtsr3vhqhEN4MAH+mbPepZBC8qzNJSKrDco:WE40n5sScBfI1AelhEN4MujGJoSoDco
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence