2851d6066006027c9c2426fbb0a406d3cd5c783632a69328482c6e0382e0f40c | Triage

Sharing

General

Target

fb7c1cbce3712572560d8a58d1db5640N.exe
Size

96KB
Sample

240905-ps9v7a1hle
MD5

fb7c1cbce3712572560d8a58d1db5640
SHA1

15fb6b108f7b857cc24d97d268084121b61c61c4
SHA256

2851d6066006027c9c2426fbb0a406d3cd5c783632a69328482c6e0382e0f40c
SHA512

709b730a5226f12c5f54277b99deed2e712bc9dc10b1ba106b72182157bf93448508a9918dcacd4e644b53161eb42f784a781edf1da9626d13769b9dbe73e056
SSDEEP

1536:mqCitYdNuoOkANu+pyaXMP/IE/2Lk1NyPXuhiTMuZXGTIVefVDkryyAyqX:vYbOkqBPrna8PXuhuXGQmVDeCyqX

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  fb7c1cbce3712572560d8a58d1db5640N.exe
- Size
  
  96KB
- MD5
  
  fb7c1cbce3712572560d8a58d1db5640
- SHA1
  
  15fb6b108f7b857cc24d97d268084121b61c61c4
- SHA256
  
  2851d6066006027c9c2426fbb0a406d3cd5c783632a69328482c6e0382e0f40c
- SHA512
  
  709b730a5226f12c5f54277b99deed2e712bc9dc10b1ba106b72182157bf93448508a9918dcacd4e644b53161eb42f784a781edf1da9626d13769b9dbe73e056
- SSDEEP
  
  1536:mqCitYdNuoOkANu+pyaXMP/IE/2Lk1NyPXuhiTMuZXGTIVefVDkryyAyqX:vYbOkqBPrna8PXuhuXGQmVDeCyqX
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence