4a986a37d5e903b3ad075bfb4e9365c620d24f7f045e908d8af13873ea7c31a3 | Triage

Sharing

General

Target

c882aa0c7e706a17f9ef9bdb6ea5dac0N.exe
Size

99KB
Sample

240823-hxw2ka1cla
MD5

c882aa0c7e706a17f9ef9bdb6ea5dac0
SHA1

353919007f441006e17a2ec1333491f8dda468a7
SHA256

4a986a37d5e903b3ad075bfb4e9365c620d24f7f045e908d8af13873ea7c31a3
SHA512

0f255ca89d5c0ac60211f0802384614a31fe95ab95a76e2608b08322b1a458f2b08e8c7df6f9fb3773b054e0902c350e35c9f94c230cd6b9c2e6789d0f4c3a73
SSDEEP

1536:xRNX7uhCNYM/YD3tHAnZ+b60LEK/BRQyquRvwtycORTRQ6mRQQRRQjGmZrhAVK5:xnKM/YD3OX0bZeyDpwoTRBmDRGGurhUI

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c882aa0c7e706a17f9ef9bdb6ea5dac0N.exe
- Size
  
  99KB
- MD5
  
  c882aa0c7e706a17f9ef9bdb6ea5dac0
- SHA1
  
  353919007f441006e17a2ec1333491f8dda468a7
- SHA256
  
  4a986a37d5e903b3ad075bfb4e9365c620d24f7f045e908d8af13873ea7c31a3
- SHA512
  
  0f255ca89d5c0ac60211f0802384614a31fe95ab95a76e2608b08322b1a458f2b08e8c7df6f9fb3773b054e0902c350e35c9f94c230cd6b9c2e6789d0f4c3a73
- SSDEEP
  
  1536:xRNX7uhCNYM/YD3tHAnZ+b60LEK/BRQyquRvwtycORTRQ6mRQQRRQjGmZrhAVK5:xnKM/YD3OX0bZeyDpwoTRBmDRGGurhUI
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence