5a398286e1bd7dc699456bec97b8e720e6c4a16ee8d404b99b60bb7bbae3d741 | Triage

Sharing

General

Target

f898579c5a392f4ebac95e8a1df6efb0N.exe
Size

59KB
Sample

240901-vglxwawfjm
MD5

f898579c5a392f4ebac95e8a1df6efb0
SHA1

5a644464ccc38b755b307269650bc5e0dd93e954
SHA256

5a398286e1bd7dc699456bec97b8e720e6c4a16ee8d404b99b60bb7bbae3d741
SHA512

c4aa97acebdfbb1a89a06dfeec6091aa3bfae55d0208bed644968d90074dc31e26d85488f15e87d146480a19cec7fcb2e92afe14563d278be7825b8501606529
SSDEEP

768:MZve5n/D6RsAAglqbzEo/utUjLF1Nweb2+6xYq7GXnaqakMAK3c3VtHS/1H59LMv:MveleRsvaKzJLQ7GXnaqatz3caHCh

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f898579c5a392f4ebac95e8a1df6efb0N.exe
- Size
  
  59KB
- MD5
  
  f898579c5a392f4ebac95e8a1df6efb0
- SHA1
  
  5a644464ccc38b755b307269650bc5e0dd93e954
- SHA256
  
  5a398286e1bd7dc699456bec97b8e720e6c4a16ee8d404b99b60bb7bbae3d741
- SHA512
  
  c4aa97acebdfbb1a89a06dfeec6091aa3bfae55d0208bed644968d90074dc31e26d85488f15e87d146480a19cec7fcb2e92afe14563d278be7825b8501606529
- SSDEEP
  
  768:MZve5n/D6RsAAglqbzEo/utUjLF1Nweb2+6xYq7GXnaqakMAK3c3VtHS/1H59LMv:MveleRsvaKzJLQ7GXnaqatz3caHCh
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence