2d16b6f5405070384695f25750c434a0644569e5bf161e2be14910a97c383126 | Triage

Sharing

General

Target

d7602bdf6aefa8ae5adce4cb53088a60N.exe
Size

1.3MB
Sample

240904-m8246sydpl
MD5

d7602bdf6aefa8ae5adce4cb53088a60
SHA1

aba18343f98472c43f4d61fcad09a55681aeb716
SHA256

2d16b6f5405070384695f25750c434a0644569e5bf161e2be14910a97c383126
SHA512

15653fb2dbeaea05e67130b3ca9b65e4c9963e8a9231f6e412462b59c534a54d196b644743f08b71fa13bcf8bf9df8cb4f7dc25e257d607e71a401c92d495c76
SSDEEP

6144:NN+vNsaUwtE5ZCd8t0DoEWufVuvw0HBHY8rQ+6bPD3wPSk8ymL2MT1d:NN+vjUWBcWfVaw0HBHY8r8ABjMn

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d7602bdf6aefa8ae5adce4cb53088a60N.exe
- Size
  
  1.3MB
- MD5
  
  d7602bdf6aefa8ae5adce4cb53088a60
- SHA1
  
  aba18343f98472c43f4d61fcad09a55681aeb716
- SHA256
  
  2d16b6f5405070384695f25750c434a0644569e5bf161e2be14910a97c383126
- SHA512
  
  15653fb2dbeaea05e67130b3ca9b65e4c9963e8a9231f6e412462b59c534a54d196b644743f08b71fa13bcf8bf9df8cb4f7dc25e257d607e71a401c92d495c76
- SSDEEP
  
  6144:NN+vNsaUwtE5ZCd8t0DoEWufVuvw0HBHY8rQ+6bPD3wPSk8ymL2MT1d:NN+vjUWBcWfVaw0HBHY8r8ABjMn
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence