d505ae126a9c7beeaa75b8d9b0755eda67c934233dd7dc39b5ecfce5d5c31fca | Triage

Sharing

General

Target

c43dbf477c920304a866a3e816ae9cd0N.exe
Size

72KB
Sample

240829-cxx1za1dnk
MD5

c43dbf477c920304a866a3e816ae9cd0
SHA1

d9b167b1bced19376a9b1d29736270c878fe8597
SHA256

d505ae126a9c7beeaa75b8d9b0755eda67c934233dd7dc39b5ecfce5d5c31fca
SHA512

88207afa4b4a6fad508f259700ca4c52c776efdb4e5d609cb51b3e4f91f5ad6653d03db7f40e4bb6fc6fb3e5afd6abbb457f67058265e0c7ebdef2db6d204c62
SSDEEP

1536:20g4SQB8r1rQU0vA58Y8symJhhAPSHQPgUN3QivEtA:Ng4S6o88ywhh1QPgU5QJA

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c43dbf477c920304a866a3e816ae9cd0N.exe
- Size
  
  72KB
- MD5
  
  c43dbf477c920304a866a3e816ae9cd0
- SHA1
  
  d9b167b1bced19376a9b1d29736270c878fe8597
- SHA256
  
  d505ae126a9c7beeaa75b8d9b0755eda67c934233dd7dc39b5ecfce5d5c31fca
- SHA512
  
  88207afa4b4a6fad508f259700ca4c52c776efdb4e5d609cb51b3e4f91f5ad6653d03db7f40e4bb6fc6fb3e5afd6abbb457f67058265e0c7ebdef2db6d204c62
- SSDEEP
  
  1536:20g4SQB8r1rQU0vA58Y8symJhhAPSHQPgUN3QivEtA:Ng4S6o88ywhh1QPgU5QJA
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence