4124d3909ca0f46968e0e4c41489f4e8a671577bb0a9daf7b089261a4690ab38 | Triage

Sharing

General

Target

325fd993bfad2c7f43d3054e016cd3d0N.exe
Size

107KB
Sample

240905-dxlhlstbkd
MD5

325fd993bfad2c7f43d3054e016cd3d0
SHA1

d914426cc07ac7cbf60b6d8f2dbf0723bae85230
SHA256

4124d3909ca0f46968e0e4c41489f4e8a671577bb0a9daf7b089261a4690ab38
SHA512

87cd772e1955f95437a0722405ed68e3126e3b2ab8244543c3d6b5bea94d650c06f52688af63c28c150c7349173c0ba5471e4e47743d11d21d5970d7f6fb018a
SSDEEP

1536:Kcp2+cu9qk8uT0y43nlQk98pH37Pe2LZaIZTJ+7LhkiB0MPiKeEAgHD/Chx3y:zp3cW8uIZ4X7LZaMU7uihJ5233y

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  325fd993bfad2c7f43d3054e016cd3d0N.exe
- Size
  
  107KB
- MD5
  
  325fd993bfad2c7f43d3054e016cd3d0
- SHA1
  
  d914426cc07ac7cbf60b6d8f2dbf0723bae85230
- SHA256
  
  4124d3909ca0f46968e0e4c41489f4e8a671577bb0a9daf7b089261a4690ab38
- SHA512
  
  87cd772e1955f95437a0722405ed68e3126e3b2ab8244543c3d6b5bea94d650c06f52688af63c28c150c7349173c0ba5471e4e47743d11d21d5970d7f6fb018a
- SSDEEP
  
  1536:Kcp2+cu9qk8uT0y43nlQk98pH37Pe2LZaIZTJ+7LhkiB0MPiKeEAgHD/Chx3y:zp3cW8uIZ4X7LZaMU7uihJ5233y
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence