c16090dfbf291e0372c9e2cd72a725ee6a4a8ce9aa4c9176e79df9bcf294806b | Triage

Sharing

General

Target

db56a7df25b8af345b56756232979660N.exe
Size

96KB
Sample

240906-v3smjszbmc
MD5

db56a7df25b8af345b56756232979660
SHA1

a06a4849744a88f14c626464cff9471e9dcf90b8
SHA256

c16090dfbf291e0372c9e2cd72a725ee6a4a8ce9aa4c9176e79df9bcf294806b
SHA512

84cf4984c403af9dda75207e2daba3f0e9b0c5fe3767f61d627263f041950c70d946950543269f850e2e2abc181fc96dd8d953c84906e3b2e30005c1c353964c
SSDEEP

3072:ynFkznzyvPwglSlnhKlkG5Lp+d69jc0v:MozEVcYp+d6NV

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  db56a7df25b8af345b56756232979660N.exe
- Size
  
  96KB
- MD5
  
  db56a7df25b8af345b56756232979660
- SHA1
  
  a06a4849744a88f14c626464cff9471e9dcf90b8
- SHA256
  
  c16090dfbf291e0372c9e2cd72a725ee6a4a8ce9aa4c9176e79df9bcf294806b
- SHA512
  
  84cf4984c403af9dda75207e2daba3f0e9b0c5fe3767f61d627263f041950c70d946950543269f850e2e2abc181fc96dd8d953c84906e3b2e30005c1c353964c
- SSDEEP
  
  3072:ynFkznzyvPwglSlnhKlkG5Lp+d69jc0v:MozEVcYp+d6NV
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence