fc12b6173d454fd79e211515447191b7edc37edc65ef0c74ca9b0d2248c6aa94 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba341003a66db7f3420e78bae5c48d80N.exe
Size

55KB
Sample

240905-ea3n2stcqe
MD5

ba341003a66db7f3420e78bae5c48d80
SHA1

cf899c3a28821215aaeb0bcae4020c716977d8a0
SHA256

fc12b6173d454fd79e211515447191b7edc37edc65ef0c74ca9b0d2248c6aa94
SHA512

fcecd3b1d672bf6de2009332ec7e058ac4a9faa5c90e3b488ba3fb3b254db41a4822c885c206b2bc97982bd40fcfad60d588b158852167ed10e1d81a7cb59c31
SSDEEP

1536:zyqyjuuH+hvoTzMH3b4F6ONSoNSd0A3shxD6:mnMH3bTONXNW0A8hh

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ba341003a66db7f3420e78bae5c48d80N.exe
- Size
  
  55KB
- MD5
  
  ba341003a66db7f3420e78bae5c48d80
- SHA1
  
  cf899c3a28821215aaeb0bcae4020c716977d8a0
- SHA256
  
  fc12b6173d454fd79e211515447191b7edc37edc65ef0c74ca9b0d2248c6aa94
- SHA512
  
  fcecd3b1d672bf6de2009332ec7e058ac4a9faa5c90e3b488ba3fb3b254db41a4822c885c206b2bc97982bd40fcfad60d588b158852167ed10e1d81a7cb59c31
- SSDEEP
  
  1536:zyqyjuuH+hvoTzMH3b4F6ONSoNSd0A3shxD6:mnMH3bTONXNW0A8hh
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence