adae62526b472d8fe6d452fa8031e86fac0577d71bf4ecb306d82f43a5ec6f29 | Triage

Sharing

General

Target

3e1f4cd22d6ac1b6f2d13e5b84f1cb20N.exe
Size

219KB
Sample

240905-v2cvpswcjm
MD5

3e1f4cd22d6ac1b6f2d13e5b84f1cb20
SHA1

c1ef0f02a3c38bdf3a5427ccd445878b2fde0d09
SHA256

adae62526b472d8fe6d452fa8031e86fac0577d71bf4ecb306d82f43a5ec6f29
SHA512

b8fb68b009e84edf63ac2f413405ed9cf58a2deb6bf0d9b5ce57819076de6f5c7d16cd051249622fea9b010803a75643bc2244bef457a26f885f8e115bf9f6d3
SSDEEP

3072:MIohuTOEBpPzwuZkO0aDb/IBPCOQvU6z314EXrjvwSfYrwBt:MIohWOEBxzDOO0aDD4PCxdXXwSfYrwB

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3e1f4cd22d6ac1b6f2d13e5b84f1cb20N.exe
- Size
  
  219KB
- MD5
  
  3e1f4cd22d6ac1b6f2d13e5b84f1cb20
- SHA1
  
  c1ef0f02a3c38bdf3a5427ccd445878b2fde0d09
- SHA256
  
  adae62526b472d8fe6d452fa8031e86fac0577d71bf4ecb306d82f43a5ec6f29
- SHA512
  
  b8fb68b009e84edf63ac2f413405ed9cf58a2deb6bf0d9b5ce57819076de6f5c7d16cd051249622fea9b010803a75643bc2244bef457a26f885f8e115bf9f6d3
- SSDEEP
  
  3072:MIohuTOEBpPzwuZkO0aDb/IBPCOQvU6z314EXrjvwSfYrwBt:MIohWOEBxzDOO0aDD4PCxdXXwSfYrwB
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence