d68f90b4e849e83df8bb2c3f4e2b08a61624ec47f0a184c3de6bbae51b5f5ec8 | Triage

Sharing

General

Target

1c75cff6ea0557b25ecc76aadbffa090N.exe
Size

96KB
Sample

240902-nhrq7aygjn
MD5

1c75cff6ea0557b25ecc76aadbffa090
SHA1

4d887bba3bdd902fbaf132847ea3e395a6c7d835
SHA256

d68f90b4e849e83df8bb2c3f4e2b08a61624ec47f0a184c3de6bbae51b5f5ec8
SHA512

5a2a31128f0575e7a8311fad5f10ef811fe9ea1e62ad378be99616077a9124a6f7e143bd17c93867388e09414e0e1b8512b526521301198781b5d0857161c288
SSDEEP

1536:fNgaLFc+0pLqQEhU7+bByOAPgnDNBrcN4i6tBYuR3PlNPMAZ:VwMhu+lyOAPgxed6BYudlNPMAZ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1c75cff6ea0557b25ecc76aadbffa090N.exe
- Size
  
  96KB
- MD5
  
  1c75cff6ea0557b25ecc76aadbffa090
- SHA1
  
  4d887bba3bdd902fbaf132847ea3e395a6c7d835
- SHA256
  
  d68f90b4e849e83df8bb2c3f4e2b08a61624ec47f0a184c3de6bbae51b5f5ec8
- SHA512
  
  5a2a31128f0575e7a8311fad5f10ef811fe9ea1e62ad378be99616077a9124a6f7e143bd17c93867388e09414e0e1b8512b526521301198781b5d0857161c288
- SSDEEP
  
  1536:fNgaLFc+0pLqQEhU7+bByOAPgnDNBrcN4i6tBYuR3PlNPMAZ:VwMhu+lyOAPgxed6BYudlNPMAZ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence