06c9700515de30e3c52b0ada439a46c808ee944b564a9b98103f50be588030f3 | Triage

Sharing

General

Target

10a43ad643f1812e13b199eacd757430N.exe
Size

388KB
Sample

240824-x6f42avfmc
MD5

10a43ad643f1812e13b199eacd757430
SHA1

0212e6ab2e9018f3925814ea9e5e72e0a7c027f6
SHA256

06c9700515de30e3c52b0ada439a46c808ee944b564a9b98103f50be588030f3
SHA512

3b075e869e8bf40e34fb0de19078045caa29c0a63793b033774f8b09e7a6eceb15a930861fd309aa7d696e0455f1b969f0b3d2eb4367e3ffbde8530d0e90d3b9
SSDEEP

6144:qLDKBBMxI4dS7o+STYaT15fLEATOpP+STYaT15f7o+STYaT15f:VjII4coTYap1E7TYapJoTYap

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  10a43ad643f1812e13b199eacd757430N.exe
- Size
  
  388KB
- MD5
  
  10a43ad643f1812e13b199eacd757430
- SHA1
  
  0212e6ab2e9018f3925814ea9e5e72e0a7c027f6
- SHA256
  
  06c9700515de30e3c52b0ada439a46c808ee944b564a9b98103f50be588030f3
- SHA512
  
  3b075e869e8bf40e34fb0de19078045caa29c0a63793b033774f8b09e7a6eceb15a930861fd309aa7d696e0455f1b969f0b3d2eb4367e3ffbde8530d0e90d3b9
- SSDEEP
  
  6144:qLDKBBMxI4dS7o+STYaT15fLEATOpP+STYaT15f7o+STYaT15f:VjII4coTYap1E7TYapJoTYap
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence