4de328e443e957360c2887c7bb051dafc6dcd0f7e5af699a8943cc197170bb1e | Triage

Sharing

General

Target

4de328e443e957360c2887c7bb051dafc6dcd0f7e5af699a8943cc197170bb1e
Size

84KB
Sample

240906-3n1cvatdmq
MD5

dbcbab3dd9edc67429163801b80c51be
SHA1

780218e6c2fdee2d3f66bd0234a67f8ebf2ed7dd
SHA256

4de328e443e957360c2887c7bb051dafc6dcd0f7e5af699a8943cc197170bb1e
SHA512

68a910b4a6837f8c96e3cee5059a697dc04e3b8cf52fb60bdfce8ae7c47a10bbed0c2cbac1c233b3d4bcead3aac5c93417676326a07ab4f81091232df4f71863
SSDEEP

1536:08MQRrgY2tumslzS7P0+nPzVyN3UXAq6kH+uk/M6AU9vskBF8G:kQRrdUslzSzxPsV4FdH+ukrAU9ZP

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  01ac58e5375a9bb8a176d89ea65de5cef9e546292e13489d5c3d1b08341a9985
- Size
  
  152KB
- MD5
  
  a1fd02f57abbbf4ba2745e222d7aa824
- SHA1
  
  6531cf1625f7d0643453a4401baab78aac269814
- SHA256
  
  01ac58e5375a9bb8a176d89ea65de5cef9e546292e13489d5c3d1b08341a9985
- SHA512
  
  f9d42c5e22014637fd6f064498d5d2d753fe9a9043a2847036cb33378e4098f325a3987c2ddc992d91696dbdd23d8e1dd0a5c16e8f0872813821e2e70f439559
- SSDEEP
  
  3072:1indKPWDmSA0NCbG6q1z6SSI64mgqo8vfaXM+kKxkYuaVDAq+fCrEpb:gndXmVlbGF1uSS4vr80MJKx5rmb
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence