d65233c909b5fdc765fe898d868b0d70ebc176a1c18710b186995cc4e8a7cbab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d65233c909b5fdc765fe898d868b0d70ebc176a1c18710b186995cc4e8a7cbab
Size

249KB
Sample

240903-fapymaxdkk
MD5

6edcbe4b4f578abefff9a4a8416fefa2
SHA1

5a9a341b4521ec7211ca765a1d341c15f01be9f8
SHA256

d65233c909b5fdc765fe898d868b0d70ebc176a1c18710b186995cc4e8a7cbab
SHA512

80bf7eaa94376304149451767c08cabdbb9dd8730057797de64f94681ffca502c4cdeed49ba0474d8a4dd2ad3014ad42d18abfc44b5bf63f32ef350fec1bf95e
SSDEEP

6144:YOhfM9zhClP4SrAEdGTBki5CYtI8TAokZ:YyqVClP4VEdW3ztI8T

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d65233c909b5fdc765fe898d868b0d70ebc176a1c18710b186995cc4e8a7cbab
- Size
  
  249KB
- MD5
  
  6edcbe4b4f578abefff9a4a8416fefa2
- SHA1
  
  5a9a341b4521ec7211ca765a1d341c15f01be9f8
- SHA256
  
  d65233c909b5fdc765fe898d868b0d70ebc176a1c18710b186995cc4e8a7cbab
- SHA512
  
  80bf7eaa94376304149451767c08cabdbb9dd8730057797de64f94681ffca502c4cdeed49ba0474d8a4dd2ad3014ad42d18abfc44b5bf63f32ef350fec1bf95e
- SSDEEP
  
  6144:YOhfM9zhClP4SrAEdGTBki5CYtI8TAokZ:YyqVClP4VEdW3ztI8T
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence