050afa196e8787a5c4569c1b6d1bc9ab251d9b62773948e09ca333d64823e244 | Triage

Sharing

General

Target

898ab36aa5fab2384caf5bc43b2dfe00N.exe
Size

91KB
Sample

240901-kkg3zswhjd
MD5

898ab36aa5fab2384caf5bc43b2dfe00
SHA1

6b924cc4c9b0fed547f107f3bacc7373af87c71e
SHA256

050afa196e8787a5c4569c1b6d1bc9ab251d9b62773948e09ca333d64823e244
SHA512

032a07bcee22aa39b1c8a66036a222b00f4e1449ca4ee6eb764fb3b9a2745b6f2baed5913960d3ae1351dffa04ff56132424ef260ac51fbf957812bdd5dd59e7
SSDEEP

1536:QjtkqYONxpy0VlJTboS2ir97rr33TDDDz+w3BSpd6VX3Yr/viVMi:Q2qYCyO73o0R7S/0Ho/vOMi

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  898ab36aa5fab2384caf5bc43b2dfe00N.exe
- Size
  
  91KB
- MD5
  
  898ab36aa5fab2384caf5bc43b2dfe00
- SHA1
  
  6b924cc4c9b0fed547f107f3bacc7373af87c71e
- SHA256
  
  050afa196e8787a5c4569c1b6d1bc9ab251d9b62773948e09ca333d64823e244
- SHA512
  
  032a07bcee22aa39b1c8a66036a222b00f4e1449ca4ee6eb764fb3b9a2745b6f2baed5913960d3ae1351dffa04ff56132424ef260ac51fbf957812bdd5dd59e7
- SSDEEP
  
  1536:QjtkqYONxpy0VlJTboS2ir97rr33TDDDz+w3BSpd6VX3Yr/viVMi:Q2qYCyO73o0R7S/0Ho/vOMi
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence