487994f427d95c04544c548e712132e639b6d9cbce52eb0934db688acacb01b2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d380a3d2af91b98b744ef177744a0310N.exe
Size

80KB
Sample

240907-hyb3sa1fkg
MD5

d380a3d2af91b98b744ef177744a0310
SHA1

31f990839f263250422059425b1847b6fc074295
SHA256

487994f427d95c04544c548e712132e639b6d9cbce52eb0934db688acacb01b2
SHA512

77e41197279ddefb231d5a10d2d525e4123dcb7e4e0b2672bb29f4a3c4e59b506d91b17fa8eed7f730b70dce8a1e22cfc0fe23a27ca988ab17a307a755f8879d
SSDEEP

1536:TKdE95S8Em08wW7S6xUHmvo7CWfL4ku5kr0MQeFMo/Cdkc4SKA/YZFeJuqnhCN:TaELjtS6xUGv0C6Uku5ktQeFMo/CdkND

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d380a3d2af91b98b744ef177744a0310N.exe
- Size
  
  80KB
- MD5
  
  d380a3d2af91b98b744ef177744a0310
- SHA1
  
  31f990839f263250422059425b1847b6fc074295
- SHA256
  
  487994f427d95c04544c548e712132e639b6d9cbce52eb0934db688acacb01b2
- SHA512
  
  77e41197279ddefb231d5a10d2d525e4123dcb7e4e0b2672bb29f4a3c4e59b506d91b17fa8eed7f730b70dce8a1e22cfc0fe23a27ca988ab17a307a755f8879d
- SSDEEP
  
  1536:TKdE95S8Em08wW7S6xUHmvo7CWfL4ku5kr0MQeFMo/Cdkc4SKA/YZFeJuqnhCN:TaELjtS6xUGv0C6Uku5ktQeFMo/CdkND
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence