aab0f7341d716242193dca34bdeabbfe12ec46160803438911a9a2f2930d1c24 | Triage

Sharing

General

Target

a16a221c77d745eaa8f7157e6ea4f520N.exe
Size

89KB
Sample

240823-m58sjszfpb
MD5

a16a221c77d745eaa8f7157e6ea4f520
SHA1

c1e78e50a7c71ce1f3bf6a77430fd4575463968f
SHA256

aab0f7341d716242193dca34bdeabbfe12ec46160803438911a9a2f2930d1c24
SHA512

0cf91d08b998e727d3ca64b54fd83a0573f57391b2df7504ff39f0f88bd5fb2a0a9075cac5068a73cb6c8888ab108bc9b9593712199fa619cfabfb0c4f63e8e4
SSDEEP

1536:ND9EfjbfUnd2sXrDGs/slb/sgSbxy97hunm4yIQfFOa4hNxjNu3P3tdO7RVJjSuf:oQnwCDGs/slb/igAmNIQfEa4hNtM3P3u

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a16a221c77d745eaa8f7157e6ea4f520N.exe
- Size
  
  89KB
- MD5
  
  a16a221c77d745eaa8f7157e6ea4f520
- SHA1
  
  c1e78e50a7c71ce1f3bf6a77430fd4575463968f
- SHA256
  
  aab0f7341d716242193dca34bdeabbfe12ec46160803438911a9a2f2930d1c24
- SHA512
  
  0cf91d08b998e727d3ca64b54fd83a0573f57391b2df7504ff39f0f88bd5fb2a0a9075cac5068a73cb6c8888ab108bc9b9593712199fa619cfabfb0c4f63e8e4
- SSDEEP
  
  1536:ND9EfjbfUnd2sXrDGs/slb/sgSbxy97hunm4yIQfFOa4hNxjNu3P3tdO7RVJjSuf:oQnwCDGs/slb/igAmNIQfEa4hNtM3P3u
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence