e380f3857f107d2519716b2fa5f2a87d0ff6b731e6aca3de0f9338106c712342 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e60bfe5b345271b549ef58a281e3d60N.exe
Size

385KB
Sample

240902-k6xqkaxgpb
MD5

3e60bfe5b345271b549ef58a281e3d60
SHA1

9278caf3461858e2d98e9bac6df5bee73861f003
SHA256

e380f3857f107d2519716b2fa5f2a87d0ff6b731e6aca3de0f9338106c712342
SHA512

72669481492041cb44ff439e55cd12e3280927325baa5edf180de0543db87dc60f6105ef3b7df0293408f8d81a405999386735b04eeb21fcf7c25067640ae8f0
SSDEEP

12288:XRnDoR5y59SLWy5jy59SL3y59Ey59SLAy59SLZy5iy59SL:h8R5y7oWypy7o3y7Ey7oAy7oZyUy7o

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3e60bfe5b345271b549ef58a281e3d60N.exe
- Size
  
  385KB
- MD5
  
  3e60bfe5b345271b549ef58a281e3d60
- SHA1
  
  9278caf3461858e2d98e9bac6df5bee73861f003
- SHA256
  
  e380f3857f107d2519716b2fa5f2a87d0ff6b731e6aca3de0f9338106c712342
- SHA512
  
  72669481492041cb44ff439e55cd12e3280927325baa5edf180de0543db87dc60f6105ef3b7df0293408f8d81a405999386735b04eeb21fcf7c25067640ae8f0
- SSDEEP
  
  12288:XRnDoR5y59SLWy5jy59SL3y59Ey59SLAy59SLZy5iy59SL:h8R5y7oWypy7o3y7Ey7oAy7oZyUy7o
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence