7d65d3603e24c41ab241d70e1f034fad15971c29d256c95224d6f771ff56e909 | Triage

Sharing

General

Target

46d1c0642fe9d748776d9a943cdbcba0N.exe
Size

9.9MB
Sample

240825-kygdlsxfjp
MD5

46d1c0642fe9d748776d9a943cdbcba0
SHA1

4182f100db8d4e5c74be966c66b0448a2d8196e1
SHA256

7d65d3603e24c41ab241d70e1f034fad15971c29d256c95224d6f771ff56e909
SHA512

777d9c104274611eb5f9948d9658234a3ff8e182904a24d93d2498a8c8d11dfebcdc02b86664de7c8161a5f6acd69e2ff221fb5d8153a9fa167979328a40385c
SSDEEP

196608:MRqnhgJuP3LAhCiVXOWjPA1oMuWr45hrr2V:JS+LJHeJWGhrr2V

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  46d1c0642fe9d748776d9a943cdbcba0N.exe
- Size
  
  9.9MB
- MD5
  
  46d1c0642fe9d748776d9a943cdbcba0
- SHA1
  
  4182f100db8d4e5c74be966c66b0448a2d8196e1
- SHA256
  
  7d65d3603e24c41ab241d70e1f034fad15971c29d256c95224d6f771ff56e909
- SHA512
  
  777d9c104274611eb5f9948d9658234a3ff8e182904a24d93d2498a8c8d11dfebcdc02b86664de7c8161a5f6acd69e2ff221fb5d8153a9fa167979328a40385c
- SSDEEP
  
  196608:MRqnhgJuP3LAhCiVXOWjPA1oMuWr45hrr2V:JS+LJHeJWGhrr2V
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence