9ea211e593c67827aa956ad8c1db115ec68292beab00afb47cd24fb11a54e8ba | Triage

Sharing

General

Target

2fe568c8b80f0a1ab79004a7d7f7fb50N.exe
Size

192KB
Sample

240825-f5paksxarf
MD5

2fe568c8b80f0a1ab79004a7d7f7fb50
SHA1

81e753ffba7cfe4ee02d335a8fa66a0783e80374
SHA256

9ea211e593c67827aa956ad8c1db115ec68292beab00afb47cd24fb11a54e8ba
SHA512

15b3969f0ed886921342f2b9ab750be8d26a67d34437d851273f9014718defb2fc541e59c96f9cde4763798f31e969b68135f53c6bd5d366bd5c3d0b66b8abec
SSDEEP

3072:+UkewKuC5kuDFYK654F/Dd1AZoUBW3FJeRuaWNXmgu+tAcrbFAJc+RsUi1aVDk5:rWKt5kSYyFrdWZHEFJ7aWN1rtMsP

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  2fe568c8b80f0a1ab79004a7d7f7fb50N.exe
- Size
  
  192KB
- MD5
  
  2fe568c8b80f0a1ab79004a7d7f7fb50
- SHA1
  
  81e753ffba7cfe4ee02d335a8fa66a0783e80374
- SHA256
  
  9ea211e593c67827aa956ad8c1db115ec68292beab00afb47cd24fb11a54e8ba
- SHA512
  
  15b3969f0ed886921342f2b9ab750be8d26a67d34437d851273f9014718defb2fc541e59c96f9cde4763798f31e969b68135f53c6bd5d366bd5c3d0b66b8abec
- SSDEEP
  
  3072:+UkewKuC5kuDFYK654F/Dd1AZoUBW3FJeRuaWNXmgu+tAcrbFAJc+RsUi1aVDk5:rWKt5kSYyFrdWZHEFJ7aWN1rtMsP
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence