f5f54cd6a15b3b1f7a0cb42a7b0c49d5deffc094a28ba4e5f67a3e6f8515565d | Triage

Sharing

General

Target

0b64662d2b545db47c592e83db02ffb0N.exe
Size

96KB
Sample

240903-tsw2js1ckm
MD5

0b64662d2b545db47c592e83db02ffb0
SHA1

4134959ef00882f19f4c0533d6c9e9645fc6f6cc
SHA256

f5f54cd6a15b3b1f7a0cb42a7b0c49d5deffc094a28ba4e5f67a3e6f8515565d
SHA512

db6a782897c07b97bcb8a8282f07f32dcfeb87a33ed9643384d8cbb590f9cb7c227ab4f7604ce0d1b42b458de8904519fcd432af542b43a5cf83a7d9cc28624f
SSDEEP

1536:/TMeZr+lcSBlqeN+4cfGK0jST2Lpj7RZObZUUWaegPYA:GlcAxNL1jSwFClUUWae

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  0b64662d2b545db47c592e83db02ffb0N.exe
- Size
  
  96KB
- MD5
  
  0b64662d2b545db47c592e83db02ffb0
- SHA1
  
  4134959ef00882f19f4c0533d6c9e9645fc6f6cc
- SHA256
  
  f5f54cd6a15b3b1f7a0cb42a7b0c49d5deffc094a28ba4e5f67a3e6f8515565d
- SHA512
  
  db6a782897c07b97bcb8a8282f07f32dcfeb87a33ed9643384d8cbb590f9cb7c227ab4f7604ce0d1b42b458de8904519fcd432af542b43a5cf83a7d9cc28624f
- SSDEEP
  
  1536:/TMeZr+lcSBlqeN+4cfGK0jST2Lpj7RZObZUUWaegPYA:GlcAxNL1jSwFClUUWae
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence