4819dff17362f2a2a95dbc82e024409d0633539ce4de5eacd077f122947bfd47 | Triage

Sharing

General

Target

b30951f238df8f9e141ade5c1330e060N.exe
Size

548KB
Sample

240826-hpc9gs1bjg
MD5

b30951f238df8f9e141ade5c1330e060
SHA1

2ee2885f266f2442142c5b261cdcb4cf6c2d9fb2
SHA256

4819dff17362f2a2a95dbc82e024409d0633539ce4de5eacd077f122947bfd47
SHA512

d5343b129f659cd3f9ee0f8d320e728bdc13c5c10a0c0d74865362cc6fb50b6ecdf11c38149779b0d1e1717d272dfa28c3c5687e5b8e0adc30a0007baf80f8da
SSDEEP

12288:abvwLvp6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGZ+C8lM1:aE1q5htaSHFaZRBEYyqmaf2qwiHPKgRP

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b30951f238df8f9e141ade5c1330e060N.exe
- Size
  
  548KB
- MD5
  
  b30951f238df8f9e141ade5c1330e060
- SHA1
  
  2ee2885f266f2442142c5b261cdcb4cf6c2d9fb2
- SHA256
  
  4819dff17362f2a2a95dbc82e024409d0633539ce4de5eacd077f122947bfd47
- SHA512
  
  d5343b129f659cd3f9ee0f8d320e728bdc13c5c10a0c0d74865362cc6fb50b6ecdf11c38149779b0d1e1717d272dfa28c3c5687e5b8e0adc30a0007baf80f8da
- SSDEEP
  
  12288:abvwLvp6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGZ+C8lM1:aE1q5htaSHFaZRBEYyqmaf2qwiHPKgRP
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence