d8dd4e8148bc14943e496040f94354ecffb824782162e135a444b902a74113d5 | Triage

Sharing

General

Target

404e8ea211306435542e99faba30e590N.exe
Size

56KB
Sample

240825-sa124s1hkq
MD5

404e8ea211306435542e99faba30e590
SHA1

d485831ff75550a9a0fec477a699efc153e70d11
SHA256

d8dd4e8148bc14943e496040f94354ecffb824782162e135a444b902a74113d5
SHA512

3b6c6ce1e3a4eba4c299b507605c218f6b6b1cfe799b1e38bb2f67f7431befcbcb73252fde136253a65e052854ce9b635e0194881a555a7971bae26180245c39
SSDEEP

1536:TxsGNuXPepKKZDXsdvO3vJpEzznzzyzznzznzzbzzbzzbzzHZzzzzzzzzzze5zzV:CGN4IZDl3vJpEzznzzyzznzznzzbzzbs

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  404e8ea211306435542e99faba30e590N.exe
- Size
  
  56KB
- MD5
  
  404e8ea211306435542e99faba30e590
- SHA1
  
  d485831ff75550a9a0fec477a699efc153e70d11
- SHA256
  
  d8dd4e8148bc14943e496040f94354ecffb824782162e135a444b902a74113d5
- SHA512
  
  3b6c6ce1e3a4eba4c299b507605c218f6b6b1cfe799b1e38bb2f67f7431befcbcb73252fde136253a65e052854ce9b635e0194881a555a7971bae26180245c39
- SSDEEP
  
  1536:TxsGNuXPepKKZDXsdvO3vJpEzznzzyzznzznzzbzzbzzbzzHZzzzzzzzzzze5zzV:CGN4IZDl3vJpEzznzzyzznzznzzbzzbs
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence