c21b8a20a22e135edfb4479a9aaa2b3f40c264f7d2bc2c6fba3a2f1ea2497ec2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01dfdc8270fc74cf4721700c141961f0N.exe
Size

93KB
Sample

240824-3kkg8awcpa
MD5

01dfdc8270fc74cf4721700c141961f0
SHA1

8d627dc56fe529657a90aa3d465caf75eece2691
SHA256

c21b8a20a22e135edfb4479a9aaa2b3f40c264f7d2bc2c6fba3a2f1ea2497ec2
SHA512

df607cea6a38e826937998361d2e3f20b463994fc8254f4a5d2cf9f36cbccfda2661bb5947320bb00fa263d7c2877dde3a7218353ffcca56709f8756f1d09611
SSDEEP

1536:J1xStuquMv98QlTLP9reMQFolG6Tdjiwg58:JSg0v986TRrXQFolG6ZY58

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  01dfdc8270fc74cf4721700c141961f0N.exe
- Size
  
  93KB
- MD5
  
  01dfdc8270fc74cf4721700c141961f0
- SHA1
  
  8d627dc56fe529657a90aa3d465caf75eece2691
- SHA256
  
  c21b8a20a22e135edfb4479a9aaa2b3f40c264f7d2bc2c6fba3a2f1ea2497ec2
- SHA512
  
  df607cea6a38e826937998361d2e3f20b463994fc8254f4a5d2cf9f36cbccfda2661bb5947320bb00fa263d7c2877dde3a7218353ffcca56709f8756f1d09611
- SSDEEP
  
  1536:J1xStuquMv98QlTLP9reMQFolG6Tdjiwg58:JSg0v986TRrXQFolG6ZY58
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence