200c6dd3c67a113ceea1f30c2ba7541d0d628d46a1060339ec0e4a896e52eeb1 | Triage

Sharing

General

Target

fb1a76a82044255fa753b578b785a330N.exe
Size

112KB
Sample

240825-tk5zgsvajr
MD5

fb1a76a82044255fa753b578b785a330
SHA1

25a068409ddff21f98bea3ddf4019d1310aa1dfe
SHA256

200c6dd3c67a113ceea1f30c2ba7541d0d628d46a1060339ec0e4a896e52eeb1
SHA512

ccfd9398e29c9cfa493d61e4d35dc6228257ca19de3465f8d8e3e5bca7c209069e35dbe594b7bf6286d66a55648211ce1f20ee2c1dbea71cbfb614654e0cb03c
SSDEEP

1536:pO232vvIukQtp2bFYULSXvMiniN8tzPE8zhrUQVoMdUT+irjVVKm1ieuRzKwZ:pO232oO6QfMl8jVzhr1RhAo+ie0TZ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fb1a76a82044255fa753b578b785a330N.exe
- Size
  
  112KB
- MD5
  
  fb1a76a82044255fa753b578b785a330
- SHA1
  
  25a068409ddff21f98bea3ddf4019d1310aa1dfe
- SHA256
  
  200c6dd3c67a113ceea1f30c2ba7541d0d628d46a1060339ec0e4a896e52eeb1
- SHA512
  
  ccfd9398e29c9cfa493d61e4d35dc6228257ca19de3465f8d8e3e5bca7c209069e35dbe594b7bf6286d66a55648211ce1f20ee2c1dbea71cbfb614654e0cb03c
- SSDEEP
  
  1536:pO232vvIukQtp2bFYULSXvMiniN8tzPE8zhrUQVoMdUT+irjVVKm1ieuRzKwZ:pO232oO6QfMl8jVzhr1RhAo+ie0TZ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence