acd4b9eacb92fa5310d1c7fada550fbdc854756603680935e4ba50910c267941 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ec4e564cafb8ce4a8db48560b58c0b0N.exe
Size

318KB
Sample

240901-r4tdpatgng
MD5

2ec4e564cafb8ce4a8db48560b58c0b0
SHA1

88df92afd0bceabff770fa246a1ba0ff020a7593
SHA256

acd4b9eacb92fa5310d1c7fada550fbdc854756603680935e4ba50910c267941
SHA512

9951187e00a57bca71ab04395ab8cc3eaca0652dccddad62acb05012bd5b6f8bbb3ba38d1767c2750105097c3742a2c59d4ec027f729c3047ca5d9fec85fce2c
SSDEEP

6144:60xm8ipRVEQHdMcm4FmowdHoS7c5cm4FmowdHoSrNF9xRVEQHd4:60voO4wFHoS04wFHoSrZx8

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  2ec4e564cafb8ce4a8db48560b58c0b0N.exe
- Size
  
  318KB
- MD5
  
  2ec4e564cafb8ce4a8db48560b58c0b0
- SHA1
  
  88df92afd0bceabff770fa246a1ba0ff020a7593
- SHA256
  
  acd4b9eacb92fa5310d1c7fada550fbdc854756603680935e4ba50910c267941
- SHA512
  
  9951187e00a57bca71ab04395ab8cc3eaca0652dccddad62acb05012bd5b6f8bbb3ba38d1767c2750105097c3742a2c59d4ec027f729c3047ca5d9fec85fce2c
- SSDEEP
  
  6144:60xm8ipRVEQHdMcm4FmowdHoS7c5cm4FmowdHoSrNF9xRVEQHd4:60voO4wFHoS04wFHoSrZx8
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence