a533c1c3a21ad5411d8b1098cde935e42ddd4af08de4573e637ba7c6d285e552 | Triage

Sharing

General

Target

6c4f9d165a512408641b4ec80e4ff820N.exe
Size

59KB
Sample

240906-y9pe9aweqr
MD5

6c4f9d165a512408641b4ec80e4ff820
SHA1

60594f2b7ce89609ce0b72cc39cddbcd26b89c03
SHA256

a533c1c3a21ad5411d8b1098cde935e42ddd4af08de4573e637ba7c6d285e552
SHA512

b73d644a7c80d29aded112f49d77c25a9319bfad48d0dc0a7ebfafecbf7fe6d56d9db22c7ac565629738efe17deb45516e0621fe4d916558667c37748e66373d
SSDEEP

768:XXhUoVX0YS15AwvWGc/VsOR560ifyMgCVhmdNkCS2p/1H57XdnhfXaXdnh:HqjYSBvWGcpb60QyMnmdNk/2LvO

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6c4f9d165a512408641b4ec80e4ff820N.exe
- Size
  
  59KB
- MD5
  
  6c4f9d165a512408641b4ec80e4ff820
- SHA1
  
  60594f2b7ce89609ce0b72cc39cddbcd26b89c03
- SHA256
  
  a533c1c3a21ad5411d8b1098cde935e42ddd4af08de4573e637ba7c6d285e552
- SHA512
  
  b73d644a7c80d29aded112f49d77c25a9319bfad48d0dc0a7ebfafecbf7fe6d56d9db22c7ac565629738efe17deb45516e0621fe4d916558667c37748e66373d
- SSDEEP
  
  768:XXhUoVX0YS15AwvWGc/VsOR560ifyMgCVhmdNkCS2p/1H57XdnhfXaXdnh:HqjYSBvWGcpb60QyMnmdNk/2LvO
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence