987f4ceee861125dfbaf5d289396c2bdf31a066c0f0838dfd62373c9a80d347b | Triage

Sharing

General

Target

f1e5934d939a25bb0455cb5dbb419df0N.exe
Size

55KB
Sample

240826-ddcrcssell
MD5

f1e5934d939a25bb0455cb5dbb419df0
SHA1

0155729db14d5d7c9baa7465e6a812f0c7869dcd
SHA256

987f4ceee861125dfbaf5d289396c2bdf31a066c0f0838dfd62373c9a80d347b
SHA512

fdceca38a9dbd91df6f4223861c3af2edc2c5264f10e33be8a78c8aa9480bfa2b5a6b5a3493a0cd155c190b230e10f9558eb9dd3ce7a35e1497bba5c5d51361f
SSDEEP

768:5ZKvgkEqDt8bztpaFbmkS02bxr5Tqx9mPKPh7JVA6jKWAJZ/1H5fXdnh:5ZugvzzaJFlurTWMstQWer

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f1e5934d939a25bb0455cb5dbb419df0N.exe
- Size
  
  55KB
- MD5
  
  f1e5934d939a25bb0455cb5dbb419df0
- SHA1
  
  0155729db14d5d7c9baa7465e6a812f0c7869dcd
- SHA256
  
  987f4ceee861125dfbaf5d289396c2bdf31a066c0f0838dfd62373c9a80d347b
- SHA512
  
  fdceca38a9dbd91df6f4223861c3af2edc2c5264f10e33be8a78c8aa9480bfa2b5a6b5a3493a0cd155c190b230e10f9558eb9dd3ce7a35e1497bba5c5d51361f
- SSDEEP
  
  768:5ZKvgkEqDt8bztpaFbmkS02bxr5Tqx9mPKPh7JVA6jKWAJZ/1H5fXdnh:5ZugvzzaJFlurTWMstQWer
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence