1d44a5cd2620eb1bbfcf161efab9b400b4f45346636fb211d89acd24e19a23db | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a94cfb729005ebdd6765d8c0e9fd86a0N.exe
Size

320KB
Sample

240903-fkntbaxfmj
MD5

a94cfb729005ebdd6765d8c0e9fd86a0
SHA1

afe544aacbb8bd962cd35ffccd82b7d27ae30be6
SHA256

1d44a5cd2620eb1bbfcf161efab9b400b4f45346636fb211d89acd24e19a23db
SHA512

f2dbc5f70fb540c66c60c6f4db92290be7f458a862b2ebf9190d45fcc17b1d236c749fc362d2bb01850c38d3dfc96bf5cc44ef24def2c73d0a8197e9526788a0
SSDEEP

6144:cgeG2q0kBuulCYJ+bGxQO+zrWnAdqjeOpKfduBX2QO+zrWnAdqjsqwp:PxOulck/+zrWAI5KFum/+zrWAIAqe

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a94cfb729005ebdd6765d8c0e9fd86a0N.exe
- Size
  
  320KB
- MD5
  
  a94cfb729005ebdd6765d8c0e9fd86a0
- SHA1
  
  afe544aacbb8bd962cd35ffccd82b7d27ae30be6
- SHA256
  
  1d44a5cd2620eb1bbfcf161efab9b400b4f45346636fb211d89acd24e19a23db
- SHA512
  
  f2dbc5f70fb540c66c60c6f4db92290be7f458a862b2ebf9190d45fcc17b1d236c749fc362d2bb01850c38d3dfc96bf5cc44ef24def2c73d0a8197e9526788a0
- SSDEEP
  
  6144:cgeG2q0kBuulCYJ+bGxQO+zrWnAdqjeOpKfduBX2QO+zrWnAdqjsqwp:PxOulck/+zrWAI5KFum/+zrWAIAqe
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence