29fa93ed9c2b86ec88519ae17589d96dae4d47e5e8c3b861dd7d539043a7262e | Triage

Sharing

General

Target

fb9bcf9340262955200a043ccd75f460N.exe
Size

1.3MB
Sample

240824-rvlx9avbld
MD5

fb9bcf9340262955200a043ccd75f460
SHA1

62a21a8abdbb3906b92f4671b8c22298eff4a4dc
SHA256

29fa93ed9c2b86ec88519ae17589d96dae4d47e5e8c3b861dd7d539043a7262e
SHA512

888a39f0a1414f04b0a871e688d420c59083bfe46988af50478461ad2d242249809e74aac5ba364af13bc9fbfb24c1aff4d23536efe4a856bc96438b72d82651
SSDEEP

24576:Bvr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:BkB9f0VP91v92W805IPSOdKgzEoxrlQ3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fb9bcf9340262955200a043ccd75f460N.exe
- Size
  
  1.3MB
- MD5
  
  fb9bcf9340262955200a043ccd75f460
- SHA1
  
  62a21a8abdbb3906b92f4671b8c22298eff4a4dc
- SHA256
  
  29fa93ed9c2b86ec88519ae17589d96dae4d47e5e8c3b861dd7d539043a7262e
- SHA512
  
  888a39f0a1414f04b0a871e688d420c59083bfe46988af50478461ad2d242249809e74aac5ba364af13bc9fbfb24c1aff4d23536efe4a856bc96438b72d82651
- SSDEEP
  
  24576:Bvr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:BkB9f0VP91v92W805IPSOdKgzEoxrlQ3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence