a4e4ce3e4630e21e7bcd73e9e46808ac6f60765c622e177a46b9283640580e21 | Triage

Sharing

General

Target

d00123efaf6aaf61311c14913daa2320N.exe
Size

390KB
Sample

240905-qfq3zs1fpk
MD5

d00123efaf6aaf61311c14913daa2320
SHA1

5158ffeec3a1edeefcc37bee703dd3319c956ac1
SHA256

a4e4ce3e4630e21e7bcd73e9e46808ac6f60765c622e177a46b9283640580e21
SHA512

4f207d0ebd13612dfbab88f16a0ccac950f481e715d5e3d38f119a6f202816de1043a2963f0cdb28c3de03826d543afe469a268a63ef5d1e1684dde6d564722a
SSDEEP

6144:Gi1uLMvYk6W1s66b+X0RjtdgOPAUvgkNRgdgOPAUvgkG:1QLUR6SUngEiM2gEif

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d00123efaf6aaf61311c14913daa2320N.exe
- Size
  
  390KB
- MD5
  
  d00123efaf6aaf61311c14913daa2320
- SHA1
  
  5158ffeec3a1edeefcc37bee703dd3319c956ac1
- SHA256
  
  a4e4ce3e4630e21e7bcd73e9e46808ac6f60765c622e177a46b9283640580e21
- SHA512
  
  4f207d0ebd13612dfbab88f16a0ccac950f481e715d5e3d38f119a6f202816de1043a2963f0cdb28c3de03826d543afe469a268a63ef5d1e1684dde6d564722a
- SSDEEP
  
  6144:Gi1uLMvYk6W1s66b+X0RjtdgOPAUvgkNRgdgOPAUvgkG:1QLUR6SUngEiM2gEif
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence