fea51f937b7989977db96d03fb1e2d71988b647b5b27c62c142f52d34ebb8b10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3bfdbec039d81b814b5b21d58d49dd0N.exe
Size

60KB
Sample

240901-nqw1wazdqc
MD5

a3bfdbec039d81b814b5b21d58d49dd0
SHA1

c19b01c2da2b29f8b8fa1e648be1d8a68f2e7556
SHA256

fea51f937b7989977db96d03fb1e2d71988b647b5b27c62c142f52d34ebb8b10
SHA512

795c3bc2d8b7890a71c668dc3381da499fe8de31f3da2890e3086a7f14746d74fd42880d1e5369f021dee18ece4310a60f33609907cc65caa6ec1554eb5fdb24
SSDEEP

1536:DGEWeSzs0n63nM1Q+Aq3491q46ZsfPX6HyB86l1rs:apzs+uhq34Xqrs3qHyB86l1rs

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a3bfdbec039d81b814b5b21d58d49dd0N.exe
- Size
  
  60KB
- MD5
  
  a3bfdbec039d81b814b5b21d58d49dd0
- SHA1
  
  c19b01c2da2b29f8b8fa1e648be1d8a68f2e7556
- SHA256
  
  fea51f937b7989977db96d03fb1e2d71988b647b5b27c62c142f52d34ebb8b10
- SHA512
  
  795c3bc2d8b7890a71c668dc3381da499fe8de31f3da2890e3086a7f14746d74fd42880d1e5369f021dee18ece4310a60f33609907cc65caa6ec1554eb5fdb24
- SSDEEP
  
  1536:DGEWeSzs0n63nM1Q+Aq3491q46ZsfPX6HyB86l1rs:apzs+uhq34Xqrs3qHyB86l1rs
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence