ff1e8706628511e447cee1f4f9fc5623203792b9f971f6c1ed0470fd8360db57 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74f774c3026b68e757698fd4e1e1c9c0N.exe
Size

406KB
Sample

240823-b851aa1gjj
MD5

74f774c3026b68e757698fd4e1e1c9c0
SHA1

512d98f558dcaf5e8ca42e5467cdb0431ef4991b
SHA256

ff1e8706628511e447cee1f4f9fc5623203792b9f971f6c1ed0470fd8360db57
SHA512

6613490107d69373a95b58a7505724909a0dfae65c0481569630b680f310ce8e95becb0c3c4bf931c1dc5d3faa66354631b2041fa4471008db3b86b806781b16
SSDEEP

6144:ZcM/PgjuU5U5Xj1XH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:qM/PAMp3Ma3M3MvD3Mq3B3Mo3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  74f774c3026b68e757698fd4e1e1c9c0N.exe
- Size
  
  406KB
- MD5
  
  74f774c3026b68e757698fd4e1e1c9c0
- SHA1
  
  512d98f558dcaf5e8ca42e5467cdb0431ef4991b
- SHA256
  
  ff1e8706628511e447cee1f4f9fc5623203792b9f971f6c1ed0470fd8360db57
- SHA512
  
  6613490107d69373a95b58a7505724909a0dfae65c0481569630b680f310ce8e95becb0c3c4bf931c1dc5d3faa66354631b2041fa4471008db3b86b806781b16
- SSDEEP
  
  6144:ZcM/PgjuU5U5Xj1XH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:qM/PAMp3Ma3M3MvD3Mq3B3Mo3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence