94cb17db1dbfe4c5d5a30ccf679e7b990a5bb0cda5d58d44aaa92e438bbb2ec4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

953e87eba4712e66cb22127b1ea99660N.exe
Size

55KB
Sample

240825-j4dn8stfrg
MD5

953e87eba4712e66cb22127b1ea99660
SHA1

f1d2d3b3613b57526b4bcb2c947cfbc5511513bf
SHA256

94cb17db1dbfe4c5d5a30ccf679e7b990a5bb0cda5d58d44aaa92e438bbb2ec4
SHA512

58cc3338d53d9a9bbe390a854809b87c77c4f649b0317bc4003d8b9a7d24ee68435c0e3ed4644e357b4a0d39574a5d8f18537974a4ef855ab3f667a72bf8a504
SSDEEP

1536:udmyJ3UECjFeTQlGjadYLdCuzOZoI/oxZLFhkKCPyQunr:QmsU+QGjddbBxZ5MPYr

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  953e87eba4712e66cb22127b1ea99660N.exe
- Size
  
  55KB
- MD5
  
  953e87eba4712e66cb22127b1ea99660
- SHA1
  
  f1d2d3b3613b57526b4bcb2c947cfbc5511513bf
- SHA256
  
  94cb17db1dbfe4c5d5a30ccf679e7b990a5bb0cda5d58d44aaa92e438bbb2ec4
- SHA512
  
  58cc3338d53d9a9bbe390a854809b87c77c4f649b0317bc4003d8b9a7d24ee68435c0e3ed4644e357b4a0d39574a5d8f18537974a4ef855ab3f667a72bf8a504
- SSDEEP
  
  1536:udmyJ3UECjFeTQlGjadYLdCuzOZoI/oxZLFhkKCPyQunr:QmsU+QGjddbBxZ5MPYr
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence