09cbc3e28304308390fba3513a1f26707f0f802ce3a0abe7510e92b61512171c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1097d631056cefcbb2ca4f10cbe49700N.exe
Size

96KB
Sample

240903-k7j6vssgmk
MD5

1097d631056cefcbb2ca4f10cbe49700
SHA1

8ffb278a945db2559f2ae75c7b03c3df3ed34e65
SHA256

09cbc3e28304308390fba3513a1f26707f0f802ce3a0abe7510e92b61512171c
SHA512

0cf0327d24fba08d9f620833fab798df163039a422097d7297f2cb2c32b479916e4336fc27945b0e43064d3c6ca8cfbab09cca9caabed33bba8c4d2ae764c5b6
SSDEEP

1536:I5x4zIwemRPVk0s/WKW+W8wWnKFc9fOgLmLYxdMk5aAjWbjtKBvU:nzimJu/WKVW85nhf7L2qOk5VwtCU

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1097d631056cefcbb2ca4f10cbe49700N.exe
- Size
  
  96KB
- MD5
  
  1097d631056cefcbb2ca4f10cbe49700
- SHA1
  
  8ffb278a945db2559f2ae75c7b03c3df3ed34e65
- SHA256
  
  09cbc3e28304308390fba3513a1f26707f0f802ce3a0abe7510e92b61512171c
- SHA512
  
  0cf0327d24fba08d9f620833fab798df163039a422097d7297f2cb2c32b479916e4336fc27945b0e43064d3c6ca8cfbab09cca9caabed33bba8c4d2ae764c5b6
- SSDEEP
  
  1536:I5x4zIwemRPVk0s/WKW+W8wWnKFc9fOgLmLYxdMk5aAjWbjtKBvU:nzimJu/WKVW85nhf7L2qOk5VwtCU
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence