41305c921aee2e7e9fc45f91e87adb3910ba40596f88b90507c81361781f4b53 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f4f3bf009c2bbba32d27d24090133f0N.exe
Size

74KB
Sample

240829-rxam1awhmc
MD5

8f4f3bf009c2bbba32d27d24090133f0
SHA1

3bd40d43e1f420d728c060aeaadb716d220bee46
SHA256

41305c921aee2e7e9fc45f91e87adb3910ba40596f88b90507c81361781f4b53
SHA512

870f1d28e567cfda7f781d7b73e82bb25680cf111d3bbae8f8d5210ec1666e5319f2782f4266b2141bf5aea65eb23fa161ff42ec9066406ea0bb3bf1630a2a2d
SSDEEP

768:GN1eJMcZN/W04wGEhkhjYRCOR/sXsFA7ka5N7IkiNnSUi+l07ycrUad39U8d1Y1R:PqxwGEhajpcC7kaDOzly588dX/u

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8f4f3bf009c2bbba32d27d24090133f0N.exe
- Size
  
  74KB
- MD5
  
  8f4f3bf009c2bbba32d27d24090133f0
- SHA1
  
  3bd40d43e1f420d728c060aeaadb716d220bee46
- SHA256
  
  41305c921aee2e7e9fc45f91e87adb3910ba40596f88b90507c81361781f4b53
- SHA512
  
  870f1d28e567cfda7f781d7b73e82bb25680cf111d3bbae8f8d5210ec1666e5319f2782f4266b2141bf5aea65eb23fa161ff42ec9066406ea0bb3bf1630a2a2d
- SSDEEP
  
  768:GN1eJMcZN/W04wGEhkhjYRCOR/sXsFA7ka5N7IkiNnSUi+l07ycrUad39U8d1Y1R:PqxwGEhajpcC7kaDOzly588dX/u
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence