923ee65710156406cbf06b549ef63775b53b3858199dd621b7a2fbbc10fee21a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b96369fc835e1026d10c72c471c6420N.exe
Size

468KB
Sample

240905-wf624awepl
MD5

9b96369fc835e1026d10c72c471c6420
SHA1

6968b63612a2bad75c28bc4d8974c89de69b427d
SHA256

923ee65710156406cbf06b549ef63775b53b3858199dd621b7a2fbbc10fee21a
SHA512

a1ce262348c5fded6565e58dad8bf7a5f508d3312ed0215f06def21b18e1820d201e5fcbbf6c3ce805eda15da0538179fb0722eb25ef5a1882ed83703519dbc6
SSDEEP

3072:vnC6ov2u/35/MbYsPgt5Of8/E5OlLVXnlmHd8SGd0vRwqfXuGll9:vnboLJ/MfPM5OfU1Me0vKgXuG

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  9b96369fc835e1026d10c72c471c6420N.exe
- Size
  
  468KB
- MD5
  
  9b96369fc835e1026d10c72c471c6420
- SHA1
  
  6968b63612a2bad75c28bc4d8974c89de69b427d
- SHA256
  
  923ee65710156406cbf06b549ef63775b53b3858199dd621b7a2fbbc10fee21a
- SHA512
  
  a1ce262348c5fded6565e58dad8bf7a5f508d3312ed0215f06def21b18e1820d201e5fcbbf6c3ce805eda15da0538179fb0722eb25ef5a1882ed83703519dbc6
- SSDEEP
  
  3072:vnC6ov2u/35/MbYsPgt5Of8/E5OlLVXnlmHd8SGd0vRwqfXuGll9:vnboLJ/MfPM5OfU1Me0vKgXuG
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence