b762485b8ea1f86cd839572cac85514d67405fc579b9dabf36ead6a446d297fa | Triage

Sharing

General

Target

fa5a8bb7393c7868a353b4973c00c9a0N.exe
Size

124KB
Sample

240823-llws7swhjh
MD5

fa5a8bb7393c7868a353b4973c00c9a0
SHA1

9c478560e0f0949dff5d79e9b58ac2f89f0082d8
SHA256

b762485b8ea1f86cd839572cac85514d67405fc579b9dabf36ead6a446d297fa
SHA512

7a25bc154304cd5aca17b030f25ecd168979d75519cc0abb9ecbdb0022721e635e60ebe0e10de62d1fc4581b6f954516268f21839043fdca9a33d30c2f4658a0
SSDEEP

1536:htjzbtj/L2hU6YaANMfxFWIifLlV3uo2a8F75YxjXq+66DFUABABOVLefEjw6Ym3:bj/92ELlV3mVYxj6+JB8M6m9jqLsFmsr

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fa5a8bb7393c7868a353b4973c00c9a0N.exe
- Size
  
  124KB
- MD5
  
  fa5a8bb7393c7868a353b4973c00c9a0
- SHA1
  
  9c478560e0f0949dff5d79e9b58ac2f89f0082d8
- SHA256
  
  b762485b8ea1f86cd839572cac85514d67405fc579b9dabf36ead6a446d297fa
- SHA512
  
  7a25bc154304cd5aca17b030f25ecd168979d75519cc0abb9ecbdb0022721e635e60ebe0e10de62d1fc4581b6f954516268f21839043fdca9a33d30c2f4658a0
- SSDEEP
  
  1536:htjzbtj/L2hU6YaANMfxFWIifLlV3uo2a8F75YxjXq+66DFUABABOVLefEjw6Ym3:bj/92ELlV3mVYxj6+JB8M6m9jqLsFmsr
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence