f57ae3256f2b08695ced8eb185a9f4efaba1124d2a3be607ffde361f5d74ec4f | Triage

Sharing

General

Target

dd5c000b525589dc07597669cba510a0N.exe
Size

240KB
Sample

240906-wdhayszfqa
MD5

dd5c000b525589dc07597669cba510a0
SHA1

e61e157c3fc8e04448a82badc3e32526fa2ae942
SHA256

f57ae3256f2b08695ced8eb185a9f4efaba1124d2a3be607ffde361f5d74ec4f
SHA512

50b9461252d83f6b26957e7dcc796550cf78e72f5e7ef257134de055dcfb636b64ce93cd6f35990be4c19fe5273cb6424d0f0e3e7ab92c1e635754f7ced29784
SSDEEP

6144:0SatM92ghKqWsGyZ6YugQdjGG1wsKm6eBgdQbkoKTBEA:0ttM9thKq7GyXu1jGG1wsGeBgRTGA

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  dd5c000b525589dc07597669cba510a0N.exe
- Size
  
  240KB
- MD5
  
  dd5c000b525589dc07597669cba510a0
- SHA1
  
  e61e157c3fc8e04448a82badc3e32526fa2ae942
- SHA256
  
  f57ae3256f2b08695ced8eb185a9f4efaba1124d2a3be607ffde361f5d74ec4f
- SHA512
  
  50b9461252d83f6b26957e7dcc796550cf78e72f5e7ef257134de055dcfb636b64ce93cd6f35990be4c19fe5273cb6424d0f0e3e7ab92c1e635754f7ced29784
- SSDEEP
  
  6144:0SatM92ghKqWsGyZ6YugQdjGG1wsKm6eBgdQbkoKTBEA:0ttM9thKq7GyXu1jGG1wsGeBgRTGA
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence