6479300991076aeeb69b1a908d6bc2357f8d4eb3543d744b67805fb8273ab6b4 | Triage

Sharing

General

Target

dc05349ea327bfb5c35ca4e5f349c800N.exe
Size

80KB
Sample

240825-w2yylsxgje
MD5

dc05349ea327bfb5c35ca4e5f349c800
SHA1

2b33bb3f0a229543ffce9f25a58a8ebd8a46a00d
SHA256

6479300991076aeeb69b1a908d6bc2357f8d4eb3543d744b67805fb8273ab6b4
SHA512

8f5ab369532e69ae7fa48d6dc13e6572b2c09d1c00f59983a897fd372c224005617f62d3e4a11c10608a052a98070a9ae0a9c3f1b428b20e2d9c7183c7a0f9ff
SSDEEP

1536:Nxll0OOxNfkrHOaYVaoerEKU2XGwlzfC+5FYy332LtQWwfi+TjRC/6y:NxMgtB5F93cJwf1TjYD

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  dc05349ea327bfb5c35ca4e5f349c800N.exe
- Size
  
  80KB
- MD5
  
  dc05349ea327bfb5c35ca4e5f349c800
- SHA1
  
  2b33bb3f0a229543ffce9f25a58a8ebd8a46a00d
- SHA256
  
  6479300991076aeeb69b1a908d6bc2357f8d4eb3543d744b67805fb8273ab6b4
- SHA512
  
  8f5ab369532e69ae7fa48d6dc13e6572b2c09d1c00f59983a897fd372c224005617f62d3e4a11c10608a052a98070a9ae0a9c3f1b428b20e2d9c7183c7a0f9ff
- SSDEEP
  
  1536:Nxll0OOxNfkrHOaYVaoerEKU2XGwlzfC+5FYy332LtQWwfi+TjRC/6y:NxMgtB5F93cJwf1TjYD
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence