854d23a863a620b200caddca3ea53292d02693f5b896cc5ba5672f45a700bdc5 | Triage

Sharing

General

Target

785595bb13a7f6a441264dc6faaf9ea0N.exe
Size

96KB
Sample

240823-qcq9ksvhle
MD5

785595bb13a7f6a441264dc6faaf9ea0
SHA1

098bffd77837b4438944757f3b2a9a3112d49c3a
SHA256

854d23a863a620b200caddca3ea53292d02693f5b896cc5ba5672f45a700bdc5
SHA512

e93ca4354d1c1af6f4a735730f62f0b03ff161c3ed00bdc5000d26bb76b77baf305ddf624488bd21b62e3ba657424c168e18c493741e6c0973d58673e9a25501
SSDEEP

1536:nHOstWyV0CaDIg3K7SJ4lVcdZ2JVQBKoC/CKniTCvVAva61hLDnePhVsWzRADTio:HZIVkwHJ4lVqZ2fQkbn1vVAva63HePHe

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  785595bb13a7f6a441264dc6faaf9ea0N.exe
- Size
  
  96KB
- MD5
  
  785595bb13a7f6a441264dc6faaf9ea0
- SHA1
  
  098bffd77837b4438944757f3b2a9a3112d49c3a
- SHA256
  
  854d23a863a620b200caddca3ea53292d02693f5b896cc5ba5672f45a700bdc5
- SHA512
  
  e93ca4354d1c1af6f4a735730f62f0b03ff161c3ed00bdc5000d26bb76b77baf305ddf624488bd21b62e3ba657424c168e18c493741e6c0973d58673e9a25501
- SSDEEP
  
  1536:nHOstWyV0CaDIg3K7SJ4lVcdZ2JVQBKoC/CKniTCvVAva61hLDnePhVsWzRADTio:HZIVkwHJ4lVqZ2fQkbn1vVAva63HePHe
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence