4e20c9e1de10311770baf52587429bf5ffa1cc9fa74d0501a3669608fbd8dc48 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

553636d520905238f9664e022d65cdf0N.exe
Size

237KB
Sample

240903-1a7hwsydra
MD5

553636d520905238f9664e022d65cdf0
SHA1

3bc9a0944f7b77d4128bb242cd572b5bd90c90fe
SHA256

4e20c9e1de10311770baf52587429bf5ffa1cc9fa74d0501a3669608fbd8dc48
SHA512

7a3951871427cd1c433b908e34286df3685fb135a8329daac40a65ed00691b75ea488e87b085e26ce4551a7317f4537a9ce4e96067b41d20c1b30b4839ba86c7
SSDEEP

3072:tPCb2L4mJvt3UdvDAUbj8Nq75Sq4iqnAUUjE02ZoL9snKKq:NeW45DXj8U5ihYjEToZY8

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  553636d520905238f9664e022d65cdf0N.exe
- Size
  
  237KB
- MD5
  
  553636d520905238f9664e022d65cdf0
- SHA1
  
  3bc9a0944f7b77d4128bb242cd572b5bd90c90fe
- SHA256
  
  4e20c9e1de10311770baf52587429bf5ffa1cc9fa74d0501a3669608fbd8dc48
- SHA512
  
  7a3951871427cd1c433b908e34286df3685fb135a8329daac40a65ed00691b75ea488e87b085e26ce4551a7317f4537a9ce4e96067b41d20c1b30b4839ba86c7
- SSDEEP
  
  3072:tPCb2L4mJvt3UdvDAUbj8Nq75Sq4iqnAUUjE02ZoL9snKKq:NeW45DXj8U5ihYjEToZY8
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence