21d9d7959705c79f620b515fd127dd71fb8506a3e8bfff46f121568ba3b62f88 | Triage

Sharing

General

Target

d723fe1987447304545d3a05e9139c80N.exe
Size

302KB
Sample

240822-ykdbpavcna
MD5

d723fe1987447304545d3a05e9139c80
SHA1

6ab418a3ff9b7d16bae5fd128c331bf7bb48ed81
SHA256

21d9d7959705c79f620b515fd127dd71fb8506a3e8bfff46f121568ba3b62f88
SHA512

81d88a1cb6add93d75d85f5f1817214f3b36fc04fea9c45666c5229241f0f39697838d871d90c5d30b15df1849886f69e77cf784ccdd300d7df5c3505aeba3de
SSDEEP

6144:DS0L7GNlighD4lTjZXvEQo9dfEORRAgnIlY1:lv8lXhuT9XvEhdfEmwlY1

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d723fe1987447304545d3a05e9139c80N.exe
- Size
  
  302KB
- MD5
  
  d723fe1987447304545d3a05e9139c80
- SHA1
  
  6ab418a3ff9b7d16bae5fd128c331bf7bb48ed81
- SHA256
  
  21d9d7959705c79f620b515fd127dd71fb8506a3e8bfff46f121568ba3b62f88
- SHA512
  
  81d88a1cb6add93d75d85f5f1817214f3b36fc04fea9c45666c5229241f0f39697838d871d90c5d30b15df1849886f69e77cf784ccdd300d7df5c3505aeba3de
- SSDEEP
  
  6144:DS0L7GNlighD4lTjZXvEQo9dfEORRAgnIlY1:lv8lXhuT9XvEhdfEmwlY1
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence