2ca94667fd73d78cf2018b7b72d61d945d8c7e7115b736c1d8e913092f2b5e75 | Triage

Sharing

General

Target

2d32e655b4fc4beea161a074611c94d0N.exe
Size

81KB
Sample

240903-g8gwca1cle
MD5

2d32e655b4fc4beea161a074611c94d0
SHA1

694e6f1d893435aac53def7f35cae5b3726c3b80
SHA256

2ca94667fd73d78cf2018b7b72d61d945d8c7e7115b736c1d8e913092f2b5e75
SHA512

5afa0e0987c9fa18e8da68acce0fab69322b5376fa79acc7f97445af2bf9cb791b3e715ef1e7e87824ee4aecc719e259c3e429153ecffbb809a9d22a15319fd7
SSDEEP

1536:BbFfcoAsJQqBWF/yX7V4Cjt8/6nbO7XFr7m4LO++/+1m6KadhYxU33HX0L:thBg/ypbtlbO7Xl/LrCimBaH8UH30L

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  2d32e655b4fc4beea161a074611c94d0N.exe
- Size
  
  81KB
- MD5
  
  2d32e655b4fc4beea161a074611c94d0
- SHA1
  
  694e6f1d893435aac53def7f35cae5b3726c3b80
- SHA256
  
  2ca94667fd73d78cf2018b7b72d61d945d8c7e7115b736c1d8e913092f2b5e75
- SHA512
  
  5afa0e0987c9fa18e8da68acce0fab69322b5376fa79acc7f97445af2bf9cb791b3e715ef1e7e87824ee4aecc719e259c3e429153ecffbb809a9d22a15319fd7
- SSDEEP
  
  1536:BbFfcoAsJQqBWF/yX7V4Cjt8/6nbO7XFr7m4LO++/+1m6KadhYxU33HX0L:thBg/ypbtlbO7Xl/LrCimBaH8UH30L
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence