6132c5b68ddadc40847fce79c46a3e220b8b9e97da56070b52742ae7685b3fe2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aedb8cf34844a465bb0342c14d074250N.exe
Size

96KB
Sample

240902-nrgbtazfpd
MD5

aedb8cf34844a465bb0342c14d074250
SHA1

35ccc2d59e058ea4262eabd33791a2a73caa162f
SHA256

6132c5b68ddadc40847fce79c46a3e220b8b9e97da56070b52742ae7685b3fe2
SHA512

7683c215ac3b467449f06d1472e46d3cadc0862a4da8d8d28e4547860eb61212c93544a178d901d43825513b33b0db9368048ec17a57786dc7de2aa3d71a8751
SSDEEP

1536:k5kePRg2+6t25y/lNk2L4ZS/FCb4noaJSNzJO/:kfS2+6pNf4ZSs4noakXO/

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  aedb8cf34844a465bb0342c14d074250N.exe
- Size
  
  96KB
- MD5
  
  aedb8cf34844a465bb0342c14d074250
- SHA1
  
  35ccc2d59e058ea4262eabd33791a2a73caa162f
- SHA256
  
  6132c5b68ddadc40847fce79c46a3e220b8b9e97da56070b52742ae7685b3fe2
- SHA512
  
  7683c215ac3b467449f06d1472e46d3cadc0862a4da8d8d28e4547860eb61212c93544a178d901d43825513b33b0db9368048ec17a57786dc7de2aa3d71a8751
- SSDEEP
  
  1536:k5kePRg2+6t25y/lNk2L4ZS/FCb4noaJSNzJO/:kfS2+6pNf4ZSs4noakXO/
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence