f28a4142168822c4d7df2f4991498528f15ec2715b97d9ab2603e3e13adf37e9 | Triage

Sharing

General

Target

5a2b95fcaa1add170ec860e9355b2730N.exe
Size

96KB
Sample

240901-leamdsxdpg
MD5

5a2b95fcaa1add170ec860e9355b2730
SHA1

f73e605f6ca56fbb461a320cda311ec8b9395644
SHA256

f28a4142168822c4d7df2f4991498528f15ec2715b97d9ab2603e3e13adf37e9
SHA512

3073c0d1e315cd1bdb10175705b7266c29d6f08da17f624fe602a0d4ddc761623e79d17a45a675f37e39665a6afbd4d4034257832eb473f3b5ea215c057bc099
SSDEEP

1536:tWNaIp5gfYXKLDRnVxFkUghFSzBdbe9MbinV39+ChnSdFFn7Elz45zFV3zMetM:gNaIpSYXs7QEdbAMbqV39ThSdn7Elz4K

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  5a2b95fcaa1add170ec860e9355b2730N.exe
- Size
  
  96KB
- MD5
  
  5a2b95fcaa1add170ec860e9355b2730
- SHA1
  
  f73e605f6ca56fbb461a320cda311ec8b9395644
- SHA256
  
  f28a4142168822c4d7df2f4991498528f15ec2715b97d9ab2603e3e13adf37e9
- SHA512
  
  3073c0d1e315cd1bdb10175705b7266c29d6f08da17f624fe602a0d4ddc761623e79d17a45a675f37e39665a6afbd4d4034257832eb473f3b5ea215c057bc099
- SSDEEP
  
  1536:tWNaIp5gfYXKLDRnVxFkUghFSzBdbe9MbinV39+ChnSdFFn7Elz45zFV3zMetM:gNaIpSYXs7QEdbAMbqV39ThSdn7Elz4K
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence