284c17501b88ba7f5c4e2f08673fddaf51e63682a48c6280e0fcef10e879e08d | Triage

Sharing

General

Target

81a34f55ebabea649139786ad0a6acd0N.exe
Size

350KB
Sample

240906-zx2qgsyare
MD5

81a34f55ebabea649139786ad0a6acd0
SHA1

06c03d4883922146c6d8d5e5eb67be4abc93bcad
SHA256

284c17501b88ba7f5c4e2f08673fddaf51e63682a48c6280e0fcef10e879e08d
SHA512

76702574d109981d913306f6f0a2f6c505f714aa74c6db20531494b1aa2dea88fd18e810ef73d0fdb177decee061cadd87f7de3ce4e8aff0b0a0df40e132ab49
SSDEEP

6144:udTVwdJTWWGahS/XRtpHVILifyeYVDcfflXpX6LRifyeYVDc:ud0hyHyefyeYCdXpXZfyeY

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  81a34f55ebabea649139786ad0a6acd0N.exe
- Size
  
  350KB
- MD5
  
  81a34f55ebabea649139786ad0a6acd0
- SHA1
  
  06c03d4883922146c6d8d5e5eb67be4abc93bcad
- SHA256
  
  284c17501b88ba7f5c4e2f08673fddaf51e63682a48c6280e0fcef10e879e08d
- SHA512
  
  76702574d109981d913306f6f0a2f6c505f714aa74c6db20531494b1aa2dea88fd18e810ef73d0fdb177decee061cadd87f7de3ce4e8aff0b0a0df40e132ab49
- SSDEEP
  
  6144:udTVwdJTWWGahS/XRtpHVILifyeYVDcfflXpX6LRifyeYVDc:ud0hyHyefyeYCdXpXZfyeY
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence