608f5b265d8b0ac63bdd024fb1870d7464a481b40a430e4e3698318db86192b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa593ce01e8d09d838e7a898822b6060N.exe
Size

188KB
Sample

240903-q8p2dszcrb
MD5

aa593ce01e8d09d838e7a898822b6060
SHA1

b30630365de24f2d18b532382325fbabc42eed45
SHA256

608f5b265d8b0ac63bdd024fb1870d7464a481b40a430e4e3698318db86192b4
SHA512

6d4abcc5e33eabc1dfc7d17d5dcc3d4aa935fd53fb3c7a57add02853a56f506d1e108ec736982cf194d953dbb953560265a1209d8eb5c9533666babc0609dfa0
SSDEEP

3072:0uyEkvZVBt1h7usluTXp6UF5wzec+tZOnU1/s5HH0AU/yRvS3u121Te:0uMdh6s21L7/s50z/Wa3/M

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  aa593ce01e8d09d838e7a898822b6060N.exe
- Size
  
  188KB
- MD5
  
  aa593ce01e8d09d838e7a898822b6060
- SHA1
  
  b30630365de24f2d18b532382325fbabc42eed45
- SHA256
  
  608f5b265d8b0ac63bdd024fb1870d7464a481b40a430e4e3698318db86192b4
- SHA512
  
  6d4abcc5e33eabc1dfc7d17d5dcc3d4aa935fd53fb3c7a57add02853a56f506d1e108ec736982cf194d953dbb953560265a1209d8eb5c9533666babc0609dfa0
- SSDEEP
  
  3072:0uyEkvZVBt1h7usluTXp6UF5wzec+tZOnU1/s5HH0AU/yRvS3u121Te:0uMdh6s21L7/s50z/Wa3/M
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence