93d873800a60d4d8ebf0f7f72cbdce0b6ee851e4ef3ab56d22148459a5842dbe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa72138756117d9fbf3b8f774661dad0N.exe
Size

64KB
Sample

240825-vtwylsxaqq
MD5

aa72138756117d9fbf3b8f774661dad0
SHA1

71d6def0bf934741176f31820a0a54c312bac7de
SHA256

93d873800a60d4d8ebf0f7f72cbdce0b6ee851e4ef3ab56d22148459a5842dbe
SHA512

acf28d131fa5fe0351347f38002c4d4818a39e591b28e6d71a9c90ba2fc55d9a805528ddc203b8bce1278d8da35c25d560f053f43ae0766ae7664bcb83263b0f
SSDEEP

1536:iaINuQ/4eelSdx//KTczcrwcldPLV1iL+iALMH6:Ba4emQxXtziTLV1iL+9Ma

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  aa72138756117d9fbf3b8f774661dad0N.exe
- Size
  
  64KB
- MD5
  
  aa72138756117d9fbf3b8f774661dad0
- SHA1
  
  71d6def0bf934741176f31820a0a54c312bac7de
- SHA256
  
  93d873800a60d4d8ebf0f7f72cbdce0b6ee851e4ef3ab56d22148459a5842dbe
- SHA512
  
  acf28d131fa5fe0351347f38002c4d4818a39e591b28e6d71a9c90ba2fc55d9a805528ddc203b8bce1278d8da35c25d560f053f43ae0766ae7664bcb83263b0f
- SSDEEP
  
  1536:iaINuQ/4eelSdx//KTczcrwcldPLV1iL+iALMH6:Ba4emQxXtziTLV1iL+9Ma
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence