5bb5473a526b933607b560d984becd42ad3a627627507465df3dbc104c3b2662 | Triage

Sharing

General

Target

06d38a93e887dd49d47a8191a2d5beb0N.exe
Size

256KB
Sample

240823-15xxyasbpr
MD5

06d38a93e887dd49d47a8191a2d5beb0
SHA1

8b787e73639f3dc97857e95cce3fcb2064a8bf05
SHA256

5bb5473a526b933607b560d984becd42ad3a627627507465df3dbc104c3b2662
SHA512

f64e28b37fe8b20d656daeeea047f11988df9b189ac8be686b7d4e93573415c7414f7ef9f7cc4498ef2102b47684f51bd70880cbfb897c62c66f080103163f04
SSDEEP

3072:ikt6VLT6sV7YgPgHq/Wp+YmKfxgQdxvzSTsXXoT2971qqWMuA7ZCgHq/Wp+YmKfX:ikkCsVUgPUmKyIxLDXXoq9FJZCUmK/

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  06d38a93e887dd49d47a8191a2d5beb0N.exe
- Size
  
  256KB
- MD5
  
  06d38a93e887dd49d47a8191a2d5beb0
- SHA1
  
  8b787e73639f3dc97857e95cce3fcb2064a8bf05
- SHA256
  
  5bb5473a526b933607b560d984becd42ad3a627627507465df3dbc104c3b2662
- SHA512
  
  f64e28b37fe8b20d656daeeea047f11988df9b189ac8be686b7d4e93573415c7414f7ef9f7cc4498ef2102b47684f51bd70880cbfb897c62c66f080103163f04
- SSDEEP
  
  3072:ikt6VLT6sV7YgPgHq/Wp+YmKfxgQdxvzSTsXXoT2971qqWMuA7ZCgHq/Wp+YmKfX:ikkCsVUgPUmKyIxLDXXoq9FJZCUmK/
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence