6f23566c59d8214f06a0b8f95479e29f53bde97db116596c87d690933b32cf5b | Triage

Sharing

General

Target

aa028a46360c49917e52173d15067ad0N.exe
Size

63KB
Sample

240904-r6e9vatdrg
MD5

aa028a46360c49917e52173d15067ad0
SHA1

895184a75b88408e0c4a4ad3713d88cf2accf320
SHA256

6f23566c59d8214f06a0b8f95479e29f53bde97db116596c87d690933b32cf5b
SHA512

3fdb9caf8c9f8366bdc4c731ccda3e1fd958f21a5fbdf613c63d2575a2f98f2264bf24c60a175fba40808cf450e9e13e803eac628c099b7a5546f53cf3ab4e47
SSDEEP

768:TLsWb5Xvx/Ku7QiV0YlTpxceJsG3H241LABObl0Qvm/1H5sKXdnhg20a0kXdnhA3:TLs25fxz7W9eWIH2+GDveQH1juIZo

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  aa028a46360c49917e52173d15067ad0N.exe
- Size
  
  63KB
- MD5
  
  aa028a46360c49917e52173d15067ad0
- SHA1
  
  895184a75b88408e0c4a4ad3713d88cf2accf320
- SHA256
  
  6f23566c59d8214f06a0b8f95479e29f53bde97db116596c87d690933b32cf5b
- SHA512
  
  3fdb9caf8c9f8366bdc4c731ccda3e1fd958f21a5fbdf613c63d2575a2f98f2264bf24c60a175fba40808cf450e9e13e803eac628c099b7a5546f53cf3ab4e47
- SSDEEP
  
  768:TLsWb5Xvx/Ku7QiV0YlTpxceJsG3H241LABObl0Qvm/1H5sKXdnhg20a0kXdnhA3:TLs25fxz7W9eWIH2+GDveQH1juIZo
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence