da78b898420f84b51b9d1e35a124c4dd76c7a956c1e249578f5061c668517f71 | Triage

Sharing

General

Target

006dab2809da49f7c05dba067ef28840N.exe
Size

1.2MB
Sample

240903-ra5jvsydnr
MD5

006dab2809da49f7c05dba067ef28840
SHA1

b54f677c2032c023770d43e976a0a081532bdfcf
SHA256

da78b898420f84b51b9d1e35a124c4dd76c7a956c1e249578f5061c668517f71
SHA512

2327fb302de57e6b650cef4445779509464cf496bc2f16bb874963a07eee94f9cbf1e72bef4d6974aed637bf2ae29be059670f9a864c0c03429a444fe42c2207
SSDEEP

6144:yAp94444O1e/Icl4yjThipmMH/gysNkvC8vA+XTv7FYUwMOFusQ+kJ3StWDKcGVq:yAp3Fv4pnsKvNA+XTvZHWuEo3oW2to

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  006dab2809da49f7c05dba067ef28840N.exe
- Size
  
  1.2MB
- MD5
  
  006dab2809da49f7c05dba067ef28840
- SHA1
  
  b54f677c2032c023770d43e976a0a081532bdfcf
- SHA256
  
  da78b898420f84b51b9d1e35a124c4dd76c7a956c1e249578f5061c668517f71
- SHA512
  
  2327fb302de57e6b650cef4445779509464cf496bc2f16bb874963a07eee94f9cbf1e72bef4d6974aed637bf2ae29be059670f9a864c0c03429a444fe42c2207
- SSDEEP
  
  6144:yAp94444O1e/Icl4yjThipmMH/gysNkvC8vA+XTv7FYUwMOFusQ+kJ3StWDKcGVq:yAp3Fv4pnsKvNA+XTvZHWuEo3oW2to
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence