788f3334c8f60d9647df558e0f7380f130dbaa8b850975828286a7f4f97aada5 | Triage

Sharing

General

Target

f4ed2c4ed11184e120783c0cded0cb30N.exe
Size

55KB
Sample

240902-z1tt2sybqg
MD5

f4ed2c4ed11184e120783c0cded0cb30
SHA1

1def8b2bc651db91a98222ba8015e71a25e9031d
SHA256

788f3334c8f60d9647df558e0f7380f130dbaa8b850975828286a7f4f97aada5
SHA512

089360aa9647b71b9335d5b3cc3d9c4168c688112cb555a3581e2fbe4505254e05ba167bcec6f01f5b167153172c45ca0b1705ab08c048169f95543b7f3d1f6d
SSDEEP

768:iYNWrXX70XmSMi2x3p0cZSCLalPDzQNgZaIRNOyNz0W2npRyeLO2p/1H5zXdnh:JAnov/psSCLUHZaIRNOyNz0WgDi2Lf

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f4ed2c4ed11184e120783c0cded0cb30N.exe
- Size
  
  55KB
- MD5
  
  f4ed2c4ed11184e120783c0cded0cb30
- SHA1
  
  1def8b2bc651db91a98222ba8015e71a25e9031d
- SHA256
  
  788f3334c8f60d9647df558e0f7380f130dbaa8b850975828286a7f4f97aada5
- SHA512
  
  089360aa9647b71b9335d5b3cc3d9c4168c688112cb555a3581e2fbe4505254e05ba167bcec6f01f5b167153172c45ca0b1705ab08c048169f95543b7f3d1f6d
- SSDEEP
  
  768:iYNWrXX70XmSMi2x3p0cZSCLalPDzQNgZaIRNOyNz0W2npRyeLO2p/1H5zXdnh:JAnov/psSCLUHZaIRNOyNz0WgDi2Lf
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence