b367eb04bea904f940106ead8ea89f488fe267845dca53a317b29f204b63ef43 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fad42f9be436b3f8c8c52932943df9a0N.exe
Size

96KB
Sample

240902-12jwxazclb
MD5

fad42f9be436b3f8c8c52932943df9a0
SHA1

c74ecf49811b356e8173da9ad736bdad8704aaca
SHA256

b367eb04bea904f940106ead8ea89f488fe267845dca53a317b29f204b63ef43
SHA512

13897d4bb5e6a0afc1323eefa80eff58c950d5fd0dd60c1b7f66d9f14af4052710a5fea89997ef2ccba77b32541683dbe225b7c71dd994454548ee3f1fc80d0c
SSDEEP

1536:tVS0cBAPrnFs+63yM2GN3b1mZKNTKh2L2aIZTJ+7LhkiB0MPiKeEAgH:tqSjeWM2GN3b8ZKU62aMU7uihJ5

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fad42f9be436b3f8c8c52932943df9a0N.exe
- Size
  
  96KB
- MD5
  
  fad42f9be436b3f8c8c52932943df9a0
- SHA1
  
  c74ecf49811b356e8173da9ad736bdad8704aaca
- SHA256
  
  b367eb04bea904f940106ead8ea89f488fe267845dca53a317b29f204b63ef43
- SHA512
  
  13897d4bb5e6a0afc1323eefa80eff58c950d5fd0dd60c1b7f66d9f14af4052710a5fea89997ef2ccba77b32541683dbe225b7c71dd994454548ee3f1fc80d0c
- SSDEEP
  
  1536:tVS0cBAPrnFs+63yM2GN3b1mZKNTKh2L2aIZTJ+7LhkiB0MPiKeEAgH:tqSjeWM2GN3b8ZKU62aMU7uihJ5
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence