e65929f0a235250ffa32b78f3b39048ee5915eb04da6983d095d66c95c9cbac9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

faa3dcbe2ecfe89627b7226038568c90N.exe
Size

406KB
Sample

240901-sxq6esvglc
MD5

faa3dcbe2ecfe89627b7226038568c90
SHA1

850d953b06d6f3e1a106a21e5c5aed0e51d3c13d
SHA256

e65929f0a235250ffa32b78f3b39048ee5915eb04da6983d095d66c95c9cbac9
SHA512

1289a42ef6fca645ee9dcd2e5e6ec367a692836309bd78d63cbc46d4cd12731cb6f6cc08b7ec4af4144b824ac1333716746070412fb5fffac2a7ca85a8bcbdb9
SSDEEP

6144:XgKuBrSo4U5TXH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:KBGs53Ma3M3MvD3Mq3B3Mo3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  faa3dcbe2ecfe89627b7226038568c90N.exe
- Size
  
  406KB
- MD5
  
  faa3dcbe2ecfe89627b7226038568c90
- SHA1
  
  850d953b06d6f3e1a106a21e5c5aed0e51d3c13d
- SHA256
  
  e65929f0a235250ffa32b78f3b39048ee5915eb04da6983d095d66c95c9cbac9
- SHA512
  
  1289a42ef6fca645ee9dcd2e5e6ec367a692836309bd78d63cbc46d4cd12731cb6f6cc08b7ec4af4144b824ac1333716746070412fb5fffac2a7ca85a8bcbdb9
- SSDEEP
  
  6144:XgKuBrSo4U5TXH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:KBGs53Ma3M3MvD3Mq3B3Mo3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence