11b21bc997083d86ac23ad8e58624568cf4b9196b1112ae4fca2687d842f966b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a22b20428d2dbd571a081a7598193d00N.exe
Size

45KB
Sample

240901-dtdnlazhla
MD5

a22b20428d2dbd571a081a7598193d00
SHA1

2a755c0aa4f2d68c73c0fe8c8134a9c78c32ddd8
SHA256

11b21bc997083d86ac23ad8e58624568cf4b9196b1112ae4fca2687d842f966b
SHA512

2542aeeb81b0fe25cf4fec4dd049853ade036bc608ca1ef36f1b372fd7056c0ca6f5523af7c9bfeb3f009c725b40122995f03a35f486246497852cf9109500d9
SSDEEP

768:QiilTZzxlWzOHsKaMFhlIkVYAlZWI4guIV45foPxLpej3/54k5EdbY7/1H5o:QHNzLWzOMKaGhlvNT4guIVBe3GkWMu

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a22b20428d2dbd571a081a7598193d00N.exe
- Size
  
  45KB
- MD5
  
  a22b20428d2dbd571a081a7598193d00
- SHA1
  
  2a755c0aa4f2d68c73c0fe8c8134a9c78c32ddd8
- SHA256
  
  11b21bc997083d86ac23ad8e58624568cf4b9196b1112ae4fca2687d842f966b
- SHA512
  
  2542aeeb81b0fe25cf4fec4dd049853ade036bc608ca1ef36f1b372fd7056c0ca6f5523af7c9bfeb3f009c725b40122995f03a35f486246497852cf9109500d9
- SSDEEP
  
  768:QiilTZzxlWzOHsKaMFhlIkVYAlZWI4guIV45foPxLpej3/54k5EdbY7/1H5o:QHNzLWzOMKaGhlvNT4guIVBe3GkWMu
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence