1a7188d1fae4092c2572afc7c74e8e70a176617fba88a7c3d5ff16d8c9aec1ff | Triage

Sharing

General

Target

0b6b6249d2bbdf75df2aef9280f6ef60N.exe
Size

91KB
Sample

240901-17d8lstgpd
MD5

0b6b6249d2bbdf75df2aef9280f6ef60
SHA1

ed16890a982451c01bb16138b7debf599405859f
SHA256

1a7188d1fae4092c2572afc7c74e8e70a176617fba88a7c3d5ff16d8c9aec1ff
SHA512

68b86d2a268703b3e8dbe1f69fb7375640f39c43380716d78d5a1883b4b73ec530f9ef0a2700801825e45eb89c3dea90aee69f03cddb5a7f4b0b066b4c71e4b3
SSDEEP

1536:uzjOV74t2xm30n5dqGqVHnLlLBsLnVLdGUHyNwtN4/nLLVaBlEaaaaaadhXd45J:uzKuID5TqRLlLBsLnVUUHyNwtN4/nEB9

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  0b6b6249d2bbdf75df2aef9280f6ef60N.exe
- Size
  
  91KB
- MD5
  
  0b6b6249d2bbdf75df2aef9280f6ef60
- SHA1
  
  ed16890a982451c01bb16138b7debf599405859f
- SHA256
  
  1a7188d1fae4092c2572afc7c74e8e70a176617fba88a7c3d5ff16d8c9aec1ff
- SHA512
  
  68b86d2a268703b3e8dbe1f69fb7375640f39c43380716d78d5a1883b4b73ec530f9ef0a2700801825e45eb89c3dea90aee69f03cddb5a7f4b0b066b4c71e4b3
- SSDEEP
  
  1536:uzjOV74t2xm30n5dqGqVHnLlLBsLnVLdGUHyNwtN4/nLLVaBlEaaaaaadhXd45J:uzKuID5TqRLlLBsLnVUUHyNwtN4/nEB9
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence