a5d64ff977d1f7bbf99f7bb59689d52675796290ed53533abcdbc96eb9cd709b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63b0b7439bc85abf2aaa346566116790N.exe
Size

352KB
Sample

240906-x3r25athke
MD5

63b0b7439bc85abf2aaa346566116790
SHA1

de07295c8e441e0b4be654be2ee7644f0b2ef02e
SHA256

a5d64ff977d1f7bbf99f7bb59689d52675796290ed53533abcdbc96eb9cd709b
SHA512

9f92b8049fe0bb177c62e6f025fa952200189c76ecaf9b2e595b32be7d68046979da7b58e5522f02720b0a7f64d07aa4d63b548d070be6c86d0d19a0dbcc79ca
SSDEEP

6144:z7RANFhSJ2CLKeEzeYr75lHzpaF2e6UK+42GTQMJSZO5f7M0rx7/hP66qve6UK+b:z7RANFhA2CqzeYr75lTefkY660fIaDZr

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  63b0b7439bc85abf2aaa346566116790N.exe
- Size
  
  352KB
- MD5
  
  63b0b7439bc85abf2aaa346566116790
- SHA1
  
  de07295c8e441e0b4be654be2ee7644f0b2ef02e
- SHA256
  
  a5d64ff977d1f7bbf99f7bb59689d52675796290ed53533abcdbc96eb9cd709b
- SHA512
  
  9f92b8049fe0bb177c62e6f025fa952200189c76ecaf9b2e595b32be7d68046979da7b58e5522f02720b0a7f64d07aa4d63b548d070be6c86d0d19a0dbcc79ca
- SSDEEP
  
  6144:z7RANFhSJ2CLKeEzeYr75lHzpaF2e6UK+42GTQMJSZO5f7M0rx7/hP66qve6UK+b:z7RANFhA2CqzeYr75lTefkY660fIaDZr
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence