6abfd9126c5cf19ce6a5de9d07e1b37ff326c04c6f2fdda42ee60f715370f6f6 | Triage

Sharing

General

Target

7961144f48e50585cb3861c44681ecf0N.exe
Size

1.6MB
Sample

240823-ftnvnswhpd
MD5

7961144f48e50585cb3861c44681ecf0
SHA1

2ce89e4b45fc09815aed7709370be3a3df55d048
SHA256

6abfd9126c5cf19ce6a5de9d07e1b37ff326c04c6f2fdda42ee60f715370f6f6
SHA512

6654af8019298a0090643de22a89f0500f249db4aba57dd1056f6b64d7c2d41006c31cd052c4062213121e41e5f485a88849f9f9cb5801ba76bdcd6afd41d5e8
SSDEEP

24576:tS2BixNBJBixNBWVBixNBJBixNBXuBixNBJBixNBWVBixNBa:tfix7/ix7yix7/ix7Xcix7/ix7yix7a

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7961144f48e50585cb3861c44681ecf0N.exe
- Size
  
  1.6MB
- MD5
  
  7961144f48e50585cb3861c44681ecf0
- SHA1
  
  2ce89e4b45fc09815aed7709370be3a3df55d048
- SHA256
  
  6abfd9126c5cf19ce6a5de9d07e1b37ff326c04c6f2fdda42ee60f715370f6f6
- SHA512
  
  6654af8019298a0090643de22a89f0500f249db4aba57dd1056f6b64d7c2d41006c31cd052c4062213121e41e5f485a88849f9f9cb5801ba76bdcd6afd41d5e8
- SSDEEP
  
  24576:tS2BixNBJBixNBWVBixNBJBixNBXuBixNBJBixNBWVBixNBa:tfix7/ix7yix7/ix7Xcix7/ix7yix7a
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence