9bff7ebc60f022c5b038d6d20fc380e9caa02c39427b014488f694ff453a3748 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af4781f3b473c9d42d7e351a580f1a00N.exe
Size

80KB
Sample

240907-lr35gaxfmk
MD5

af4781f3b473c9d42d7e351a580f1a00
SHA1

2bd75bc99e2d438c2d8dd170d0e730841556d1bc
SHA256

9bff7ebc60f022c5b038d6d20fc380e9caa02c39427b014488f694ff453a3748
SHA512

39d969a508b27a7c681df9d960a275bbdd8ed206f5bef1abade50d672915a0fad821be898a044c1c0c2ecec5671b00c6f8174b534fb61b5203a571b82aaa9a2b
SSDEEP

1536:HikYIkeLmupqGU9yPxg3QBnHEPaOGN5YMkhohBE8VGh:6Iklup363QFkPu/UAEQGh

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  af4781f3b473c9d42d7e351a580f1a00N.exe
- Size
  
  80KB
- MD5
  
  af4781f3b473c9d42d7e351a580f1a00
- SHA1
  
  2bd75bc99e2d438c2d8dd170d0e730841556d1bc
- SHA256
  
  9bff7ebc60f022c5b038d6d20fc380e9caa02c39427b014488f694ff453a3748
- SHA512
  
  39d969a508b27a7c681df9d960a275bbdd8ed206f5bef1abade50d672915a0fad821be898a044c1c0c2ecec5671b00c6f8174b534fb61b5203a571b82aaa9a2b
- SSDEEP
  
  1536:HikYIkeLmupqGU9yPxg3QBnHEPaOGN5YMkhohBE8VGh:6Iklup363QFkPu/UAEQGh
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence