3d1b5305aa7a300ada48cb20031d6ef20d85da5c9d03f5a4fd3ac3815f230427 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

88bdb3b3caa6467f148b36a02edfebe0N.exe
Size

64KB
Sample

240906-pnr5kswhra
MD5

88bdb3b3caa6467f148b36a02edfebe0
SHA1

c02f4808791bf2d95ee218ace5c61c8e07549d4c
SHA256

3d1b5305aa7a300ada48cb20031d6ef20d85da5c9d03f5a4fd3ac3815f230427
SHA512

6aeea2d1de5f66238570f6ff68ac557ee6c4a8964747268b1d7f25aa8f11ae49473899de90fa4c30af9968048cbf6f7e88af5f83ee132b8d7c78fa854ed39108
SSDEEP

1536:FAezA4zNKyv5wm3O9gWM5XyVOQ5SliBbfp6rof2LFB7RZR:FRIyv5wWWMtNQ5G7F

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  88bdb3b3caa6467f148b36a02edfebe0N.exe
- Size
  
  64KB
- MD5
  
  88bdb3b3caa6467f148b36a02edfebe0
- SHA1
  
  c02f4808791bf2d95ee218ace5c61c8e07549d4c
- SHA256
  
  3d1b5305aa7a300ada48cb20031d6ef20d85da5c9d03f5a4fd3ac3815f230427
- SHA512
  
  6aeea2d1de5f66238570f6ff68ac557ee6c4a8964747268b1d7f25aa8f11ae49473899de90fa4c30af9968048cbf6f7e88af5f83ee132b8d7c78fa854ed39108
- SSDEEP
  
  1536:FAezA4zNKyv5wm3O9gWM5XyVOQ5SliBbfp6rof2LFB7RZR:FRIyv5wWWMtNQ5G7F
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence