f33917552b0c5686bf869b3a9cad1c6de013546875407c09d4dc5e85d7f8f13e | Triage

Sharing

General

Target

ed67004646d20dd3973a4b3d6e782a20N.exe
Size

52KB
Sample

240904-11n48sxdkk
MD5

ed67004646d20dd3973a4b3d6e782a20
SHA1

a3daa3ee029b03a0ec4bb648287d32b643510b1d
SHA256

f33917552b0c5686bf869b3a9cad1c6de013546875407c09d4dc5e85d7f8f13e
SHA512

736c5b32c65e3257e1726eaa341c0695599cf57c7d55cd7f78abee015d473bf15c2a9445bca39b31ef3bd23b457f2ff4628ea147336e9940be3ef22180bf15ce
SSDEEP

768:C5MT94l4e4BO7YfwnoXu+MFz+OGxcw1b66DTMFn8V/1H5F/sfMABvKWe:wyml454YfwZTIHl6vn8PWMAdKZ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ed67004646d20dd3973a4b3d6e782a20N.exe
- Size
  
  52KB
- MD5
  
  ed67004646d20dd3973a4b3d6e782a20
- SHA1
  
  a3daa3ee029b03a0ec4bb648287d32b643510b1d
- SHA256
  
  f33917552b0c5686bf869b3a9cad1c6de013546875407c09d4dc5e85d7f8f13e
- SHA512
  
  736c5b32c65e3257e1726eaa341c0695599cf57c7d55cd7f78abee015d473bf15c2a9445bca39b31ef3bd23b457f2ff4628ea147336e9940be3ef22180bf15ce
- SSDEEP
  
  768:C5MT94l4e4BO7YfwnoXu+MFz+OGxcw1b66DTMFn8V/1H5F/sfMABvKWe:wyml454YfwZTIHl6vn8PWMAdKZ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence