c2482a41fe8b11cf4fac93d192a2a7d62756de4f15eec6e68d66d5c7d1ebba20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f2f4156762b67f0995b1c0e29bff8530N.exe
Size

94KB
Sample

240823-j4x3wawbjm
MD5

f2f4156762b67f0995b1c0e29bff8530
SHA1

456a9718e09952beee1a12326aec973a911e50e4
SHA256

c2482a41fe8b11cf4fac93d192a2a7d62756de4f15eec6e68d66d5c7d1ebba20
SHA512

604a8acec6ffa586e21cdd750cabeaf95a32c528d3d8aa102dd96ec029377eac46930a521222bc4716ff23fbc85f6091228dcbfb9f3bac597ce3e4831fb308b2
SSDEEP

1536:vaPAF0gxclVJE8Her1JKC8ygIMqC6nW/FyOTFaZBjtp2LHkMQ262AjCsQ2PCZZr2:WSz8+r1JKC9gIMqC0GFmEHkMQH2qC7Z0

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f2f4156762b67f0995b1c0e29bff8530N.exe
- Size
  
  94KB
- MD5
  
  f2f4156762b67f0995b1c0e29bff8530
- SHA1
  
  456a9718e09952beee1a12326aec973a911e50e4
- SHA256
  
  c2482a41fe8b11cf4fac93d192a2a7d62756de4f15eec6e68d66d5c7d1ebba20
- SHA512
  
  604a8acec6ffa586e21cdd750cabeaf95a32c528d3d8aa102dd96ec029377eac46930a521222bc4716ff23fbc85f6091228dcbfb9f3bac597ce3e4831fb308b2
- SSDEEP
  
  1536:vaPAF0gxclVJE8Her1JKC8ygIMqC6nW/FyOTFaZBjtp2LHkMQ262AjCsQ2PCZZr2:WSz8+r1JKC9gIMqC0GFmEHkMQH2qC7Z0
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence