5e08ed35c1be1a3f1a4b86dce7a7bb46f36e5544a1ae0660eb68abd24436fc43 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d098b8e3ad04a5720f9dc4c9e4a5890N.exe
Size

64KB
Sample

240829-g593qazcmk
MD5

6d098b8e3ad04a5720f9dc4c9e4a5890
SHA1

373e1306a8a333409214589f09ecd8068e73095b
SHA256

5e08ed35c1be1a3f1a4b86dce7a7bb46f36e5544a1ae0660eb68abd24436fc43
SHA512

2d1f996f31dff3524ec70aca4efa06d48dcd453db9c336a651b85320f596334cbce0dfc069761c4acbf094b704162690deb53a20e7fe309989cc2affb2d7b682
SSDEEP

1536:lphknDaTe8waUi1/UBp7WcRUa5C62L0CYrum8SPE:vhkn2/wUUBp6cU0VT8SE

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6d098b8e3ad04a5720f9dc4c9e4a5890N.exe
- Size
  
  64KB
- MD5
  
  6d098b8e3ad04a5720f9dc4c9e4a5890
- SHA1
  
  373e1306a8a333409214589f09ecd8068e73095b
- SHA256
  
  5e08ed35c1be1a3f1a4b86dce7a7bb46f36e5544a1ae0660eb68abd24436fc43
- SHA512
  
  2d1f996f31dff3524ec70aca4efa06d48dcd453db9c336a651b85320f596334cbce0dfc069761c4acbf094b704162690deb53a20e7fe309989cc2affb2d7b682
- SSDEEP
  
  1536:lphknDaTe8waUi1/UBp7WcRUa5C62L0CYrum8SPE:vhkn2/wUUBp6cU0VT8SE
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence