18df4522586a0b0b86f87eee33a3cd4560a1242a6bd9c738c118b72bc4125892 | Triage

Sharing

General

Target

df40737cc3151ece7e561bf27330b310N.exe
Size

512KB
Sample

240901-l3jvzaxerr
MD5

df40737cc3151ece7e561bf27330b310
SHA1

92c4c460d567626862b4bdae61a15e6bf55aa5b3
SHA256

18df4522586a0b0b86f87eee33a3cd4560a1242a6bd9c738c118b72bc4125892
SHA512

32e305c458f20589690b9b50fb8fb4fc42e86736784ad10b1108be287de7ab81c2ceb41d59c9425f5a60cefc364ebb06d2e1e9818f90cb21fe0bf60b53999514
SSDEEP

6144:67EyfYOBe6UK+42GTQMJSZO5f7M0rx7/hP66qve6UK+42GTQMJSZO5f7wj7vK/uW:mEyw3kY660fIaDZkY660f8jTK/Xhdz

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  df40737cc3151ece7e561bf27330b310N.exe
- Size
  
  512KB
- MD5
  
  df40737cc3151ece7e561bf27330b310
- SHA1
  
  92c4c460d567626862b4bdae61a15e6bf55aa5b3
- SHA256
  
  18df4522586a0b0b86f87eee33a3cd4560a1242a6bd9c738c118b72bc4125892
- SHA512
  
  32e305c458f20589690b9b50fb8fb4fc42e86736784ad10b1108be287de7ab81c2ceb41d59c9425f5a60cefc364ebb06d2e1e9818f90cb21fe0bf60b53999514
- SSDEEP
  
  6144:67EyfYOBe6UK+42GTQMJSZO5f7M0rx7/hP66qve6UK+42GTQMJSZO5f7wj7vK/uW:mEyw3kY660fIaDZkY660f8jTK/Xhdz
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence