bd42259676d620cdcd58722fed0bbeb2acf10a708c5c1d98f8fb1ff9ef64314b | Triage

Sharing

General

Target

ab9449fc4e1e4b34cf6f2174afe7fda0N.exe
Size

80KB
Sample

240905-h8859svgpn
MD5

ab9449fc4e1e4b34cf6f2174afe7fda0
SHA1

501bf695598ce8f29fa301f9fb6a3b02de27a73a
SHA256

bd42259676d620cdcd58722fed0bbeb2acf10a708c5c1d98f8fb1ff9ef64314b
SHA512

64d982e7b2e1473f6f565ba5c1fd057050bfa0ba59d29de33af05941bbd64cc0ab3c0525f66efb297a6221dfe0d47e252089a19aa4e7de21e0805d45f0a894cd
SSDEEP

1536:dHCD6SSGnmVi4irUEF4os868E+iRdjCx/F2LLS5DUHRbPa9b6i+sIk:dHCD6f8mVi4irU44Q68E+iRg/2LS5DSU

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ab9449fc4e1e4b34cf6f2174afe7fda0N.exe
- Size
  
  80KB
- MD5
  
  ab9449fc4e1e4b34cf6f2174afe7fda0
- SHA1
  
  501bf695598ce8f29fa301f9fb6a3b02de27a73a
- SHA256
  
  bd42259676d620cdcd58722fed0bbeb2acf10a708c5c1d98f8fb1ff9ef64314b
- SHA512
  
  64d982e7b2e1473f6f565ba5c1fd057050bfa0ba59d29de33af05941bbd64cc0ab3c0525f66efb297a6221dfe0d47e252089a19aa4e7de21e0805d45f0a894cd
- SSDEEP
  
  1536:dHCD6SSGnmVi4irUEF4os868E+iRdjCx/F2LLS5DUHRbPa9b6i+sIk:dHCD6f8mVi4irU44Q68E+iRg/2LS5DSU
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence