f4894a514e883c40c16c13b2fa09e9806e794e127667a2d0f4d1dabefb1bb3b5 | Triage

Sharing

General

Target

85c2a8b052d0eb8e80d3b966269fe0e0N.exe
Size

96KB
Sample

240824-p2mf9asemj
MD5

85c2a8b052d0eb8e80d3b966269fe0e0
SHA1

e15644cac116142c6a6837baf781e16d0d1e68a4
SHA256

f4894a514e883c40c16c13b2fa09e9806e794e127667a2d0f4d1dabefb1bb3b5
SHA512

d9090c43cff633575c41d7e1a6c1756bb83f10d8c07480ed201336795a2d82773f1d5826f6a3b87cd2f6f7d2511322899b9f5395eaaf10aabd76e4f2a3864976
SSDEEP

1536:co7ITkpFQig5d6FiaoMCU1R28T6S2Lk1GPXuhiTMuZXGTIVefVDkryyAyqX:t7c36FR5t6faGPXuhuXGQmVDeCyqX

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  85c2a8b052d0eb8e80d3b966269fe0e0N.exe
- Size
  
  96KB
- MD5
  
  85c2a8b052d0eb8e80d3b966269fe0e0
- SHA1
  
  e15644cac116142c6a6837baf781e16d0d1e68a4
- SHA256
  
  f4894a514e883c40c16c13b2fa09e9806e794e127667a2d0f4d1dabefb1bb3b5
- SHA512
  
  d9090c43cff633575c41d7e1a6c1756bb83f10d8c07480ed201336795a2d82773f1d5826f6a3b87cd2f6f7d2511322899b9f5395eaaf10aabd76e4f2a3864976
- SSDEEP
  
  1536:co7ITkpFQig5d6FiaoMCU1R28T6S2Lk1GPXuhiTMuZXGTIVefVDkryyAyqX:t7c36FR5t6faGPXuhuXGQmVDeCyqX
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence