380cd366eca6255e239158257e97cb00654d7989374b8d26884613c9d8aba4e1 | Triage

Sharing

General

Target

256c90a7452306ddced0c016453ee700N.exe
Size

94KB
Sample

240825-t9m5zatfjh
MD5

256c90a7452306ddced0c016453ee700
SHA1

ae4ca5b4ec2db01d1dd84924af6f6e72b9fba8f9
SHA256

380cd366eca6255e239158257e97cb00654d7989374b8d26884613c9d8aba4e1
SHA512

f6335b64982e31d62aeb3540f4d2769786fd98e89a7a45c93b47d5f045e7df334b22babc062c1c5334fb3d38f449996697184ae0509f7adeaf84b99b65facd96
SSDEEP

1536:EZTl3spjVyjPD0nOoJ4ZuRaRWh2+1kmbNmJnVOzvi7BR9L4DT2EnINs:Ei8PwnjKazjaqNmJnUi6+ob

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  256c90a7452306ddced0c016453ee700N.exe
- Size
  
  94KB
- MD5
  
  256c90a7452306ddced0c016453ee700
- SHA1
  
  ae4ca5b4ec2db01d1dd84924af6f6e72b9fba8f9
- SHA256
  
  380cd366eca6255e239158257e97cb00654d7989374b8d26884613c9d8aba4e1
- SHA512
  
  f6335b64982e31d62aeb3540f4d2769786fd98e89a7a45c93b47d5f045e7df334b22babc062c1c5334fb3d38f449996697184ae0509f7adeaf84b99b65facd96
- SSDEEP
  
  1536:EZTl3spjVyjPD0nOoJ4ZuRaRWh2+1kmbNmJnVOzvi7BR9L4DT2EnINs:Ei8PwnjKazjaqNmJnUi6+ob
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence