ac55200940f3bfea02072450a30a12ba29bd79d8b262391c7b32e972b33ae097 | Triage

Sharing

General

Target

d91bbba1b93d9fc794c3dfe4bed4cb80N.exe
Size

302KB
Sample

240825-g4dccs1cln
MD5

d91bbba1b93d9fc794c3dfe4bed4cb80
SHA1

73717e427cd340887f1166cf7cb53c6ca581552a
SHA256

ac55200940f3bfea02072450a30a12ba29bd79d8b262391c7b32e972b33ae097
SHA512

635705d0d79f09e2e32902e612531fcf8f6e3d985ff850a69663921b4f8bf13625992587ea1c9c149df97a65d7c38af10425ea64297f6d9de8ebd4eb358ab86a
SSDEEP

6144:h/+sZhnoHswL7GNlighD4lTjZXvEQo9dfEORRAgnIlY1:x+Uhibv8lXhuT9XvEhdfEmwlY1

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d91bbba1b93d9fc794c3dfe4bed4cb80N.exe
- Size
  
  302KB
- MD5
  
  d91bbba1b93d9fc794c3dfe4bed4cb80
- SHA1
  
  73717e427cd340887f1166cf7cb53c6ca581552a
- SHA256
  
  ac55200940f3bfea02072450a30a12ba29bd79d8b262391c7b32e972b33ae097
- SHA512
  
  635705d0d79f09e2e32902e612531fcf8f6e3d985ff850a69663921b4f8bf13625992587ea1c9c149df97a65d7c38af10425ea64297f6d9de8ebd4eb358ab86a
- SSDEEP
  
  6144:h/+sZhnoHswL7GNlighD4lTjZXvEQo9dfEORRAgnIlY1:x+Uhibv8lXhuT9XvEhdfEmwlY1
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence