31a89ce6df3e5786324211302f6a58c8460475e7890ad34914c63eb8d6149989 | Triage

Sharing

General

Target

c65a4aeed517cb27810434724ec73380N.exe
Size

192KB
Sample

240905-l36dzayfqg
MD5

c65a4aeed517cb27810434724ec73380
SHA1

1e17108d0a9d72622c0b43cc677c9ba186ea6dea
SHA256

31a89ce6df3e5786324211302f6a58c8460475e7890ad34914c63eb8d6149989
SHA512

bf949f68a30bfd8657b4c05a9617931c51d5d787330998b9831b16d84191585d3ca00fe6450ff48749ce539bd9f8ceea06c9a732af1ec27241a122f072912cff
SSDEEP

3072:K0U16nvJP2wY3zxvyeF85nLoYDGNlib5qfpfGU4lfirgjZXmK:K0UeReX3zxh6L7GNlighD4lTjZXN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c65a4aeed517cb27810434724ec73380N.exe
- Size
  
  192KB
- MD5
  
  c65a4aeed517cb27810434724ec73380
- SHA1
  
  1e17108d0a9d72622c0b43cc677c9ba186ea6dea
- SHA256
  
  31a89ce6df3e5786324211302f6a58c8460475e7890ad34914c63eb8d6149989
- SHA512
  
  bf949f68a30bfd8657b4c05a9617931c51d5d787330998b9831b16d84191585d3ca00fe6450ff48749ce539bd9f8ceea06c9a732af1ec27241a122f072912cff
- SSDEEP
  
  3072:K0U16nvJP2wY3zxvyeF85nLoYDGNlib5qfpfGU4lfirgjZXmK:K0UeReX3zxh6L7GNlighD4lTjZXN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence