c860738c5e9f2ead6c121d5cc35b82434843a18ef2a99e82f4b4e3478a52061d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c9385d2cc0fe21c924c8e419a6b13600N.exe
Size

64KB
Sample

240903-kzzlksserj
MD5

c9385d2cc0fe21c924c8e419a6b13600
SHA1

80853a032cf89c56f0cdf0a97457897bfb01c274
SHA256

c860738c5e9f2ead6c121d5cc35b82434843a18ef2a99e82f4b4e3478a52061d
SHA512

81ab41d618d1f2f3b33f6ec161fa353368b8207af5e23b455289b4db31b79618914382c78567a636170719bc71df8c0c8a55759558f3456bef3ec923dfbd46f0
SSDEEP

1536:50tICFCmNtP+DL5ebw4nLYJ1JV2LbsBMu/H1:WJ7S5eHUJjGbaN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c9385d2cc0fe21c924c8e419a6b13600N.exe
- Size
  
  64KB
- MD5
  
  c9385d2cc0fe21c924c8e419a6b13600
- SHA1
  
  80853a032cf89c56f0cdf0a97457897bfb01c274
- SHA256
  
  c860738c5e9f2ead6c121d5cc35b82434843a18ef2a99e82f4b4e3478a52061d
- SHA512
  
  81ab41d618d1f2f3b33f6ec161fa353368b8207af5e23b455289b4db31b79618914382c78567a636170719bc71df8c0c8a55759558f3456bef3ec923dfbd46f0
- SSDEEP
  
  1536:50tICFCmNtP+DL5ebw4nLYJ1JV2LbsBMu/H1:WJ7S5eHUJjGbaN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence