b9a784f88ad191099948ecb69792ec3290edffe2c6dd2053277e645ef514ebba | Triage

Sharing

General

Target

368bf3f2df164a66db0cfe7c8a129ac0N.exe
Size

80KB
Sample

240826-cx2zxs1fpq
MD5

368bf3f2df164a66db0cfe7c8a129ac0
SHA1

85f8063d26b8357e6c2683b1d568a21f33ce56fe
SHA256

b9a784f88ad191099948ecb69792ec3290edffe2c6dd2053277e645ef514ebba
SHA512

3b6df288c49cb0a663d64cfc698fcaf9b253a3c5050045f472ec7a5700c1c6cd9b60991a73a4b25f6cbf445337e9f74241b2d2cd8f00bb989c9c152394fcfc64
SSDEEP

1536:bagdObSKuiXz3Lkq1ytGjUYAur5AK2GNXo25zDfWqdMVrlEFtyb7IYOOqw4Tv:LKvbkq1yYz5AK2GN4QzTWqAhELy1MTTv

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  368bf3f2df164a66db0cfe7c8a129ac0N.exe
- Size
  
  80KB
- MD5
  
  368bf3f2df164a66db0cfe7c8a129ac0
- SHA1
  
  85f8063d26b8357e6c2683b1d568a21f33ce56fe
- SHA256
  
  b9a784f88ad191099948ecb69792ec3290edffe2c6dd2053277e645ef514ebba
- SHA512
  
  3b6df288c49cb0a663d64cfc698fcaf9b253a3c5050045f472ec7a5700c1c6cd9b60991a73a4b25f6cbf445337e9f74241b2d2cd8f00bb989c9c152394fcfc64
- SSDEEP
  
  1536:bagdObSKuiXz3Lkq1ytGjUYAur5AK2GNXo25zDfWqdMVrlEFtyb7IYOOqw4Tv:LKvbkq1yYz5AK2GN4QzTWqAhELy1MTTv
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence