1649c64a857b7d2a8aae380331400e19f6d955e20c25f0982efdd903c1ae4513 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cf766547724185861e0d0c5baf6ced0N.exe
Size

64KB
Sample

240901-3xq6jawemb
MD5

8cf766547724185861e0d0c5baf6ced0
SHA1

597d50a12c673a8adce6725a78cb449d6201e0a6
SHA256

1649c64a857b7d2a8aae380331400e19f6d955e20c25f0982efdd903c1ae4513
SHA512

9e8e1a02c98a1ce436a4a3a7202e1504b88609d2af593c9908125fa3f174ac1cd21632de06d4475d21c2b04c0edd3586128aa1ca58cd7ffb967d7c897f688f87
SSDEEP

1536:ZlfpuDKUd9OnvLQuHLXuwFHjgoh2L/rDWBi:vMDBzyQuHLXHjgo6/2Bi

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8cf766547724185861e0d0c5baf6ced0N.exe
- Size
  
  64KB
- MD5
  
  8cf766547724185861e0d0c5baf6ced0
- SHA1
  
  597d50a12c673a8adce6725a78cb449d6201e0a6
- SHA256
  
  1649c64a857b7d2a8aae380331400e19f6d955e20c25f0982efdd903c1ae4513
- SHA512
  
  9e8e1a02c98a1ce436a4a3a7202e1504b88609d2af593c9908125fa3f174ac1cd21632de06d4475d21c2b04c0edd3586128aa1ca58cd7ffb967d7c897f688f87
- SSDEEP
  
  1536:ZlfpuDKUd9OnvLQuHLXuwFHjgoh2L/rDWBi:vMDBzyQuHLXHjgo6/2Bi
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence