6749e5b1d17161c6693bac81758006d1716048567388bd620f72dfd22938e809 | Triage

Sharing

General

Target

de31ca84aa3b724b2043dbfacd273120N.exe
Size

62KB
Sample

240902-15fnnaydjk
MD5

de31ca84aa3b724b2043dbfacd273120
SHA1

56606533efdfef688e6d6741a12bcdc709e75aa8
SHA256

6749e5b1d17161c6693bac81758006d1716048567388bd620f72dfd22938e809
SHA512

44a61c18ec5a071f96e2254b574c41342d3efe9d6c8dbeedbf8e1185fb7f75a85c0adae4a43f35de147e23b7123cf8d422f374db71931cde9fd64f72fc1f2d29
SSDEEP

1536:sgp5cg3+judBtBoDuGGyinrBHGuX66yvve8Cy:N5cm+ydaiLGuX66Gve8

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  de31ca84aa3b724b2043dbfacd273120N.exe
- Size
  
  62KB
- MD5
  
  de31ca84aa3b724b2043dbfacd273120
- SHA1
  
  56606533efdfef688e6d6741a12bcdc709e75aa8
- SHA256
  
  6749e5b1d17161c6693bac81758006d1716048567388bd620f72dfd22938e809
- SHA512
  
  44a61c18ec5a071f96e2254b574c41342d3efe9d6c8dbeedbf8e1185fb7f75a85c0adae4a43f35de147e23b7123cf8d422f374db71931cde9fd64f72fc1f2d29
- SSDEEP
  
  1536:sgp5cg3+judBtBoDuGGyinrBHGuX66yvve8Cy:N5cm+ydaiLGuX66Gve8
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence