8734e46e42b89a179abfb4d28d2b96a1eaaa230f98ad4bd048ceb6b69df2af1b | Triage

Sharing

General

Target

d579c579713d424909f4962dcf25e0b0N.exe
Size

128KB
Sample

240907-nl1s9sscnf
MD5

d579c579713d424909f4962dcf25e0b0
SHA1

22dc0f745ca5c95a5233bf1d7c65a073a4ea4e87
SHA256

8734e46e42b89a179abfb4d28d2b96a1eaaa230f98ad4bd048ceb6b69df2af1b
SHA512

38529a9a6197d6550834f5156375fa155483e07170b34ad1465381b98e8c574d2994753d335d5095ec06b3c1ea63c3e64b63730cc962b2ee87b5e8d64a299f68
SSDEEP

3072:sdIU56AuGiympJ5xLtgPtfLbDr/EznYfzB9BSwW:G0SiysHfglvDr/YOzLc

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d579c579713d424909f4962dcf25e0b0N.exe
- Size
  
  128KB
- MD5
  
  d579c579713d424909f4962dcf25e0b0
- SHA1
  
  22dc0f745ca5c95a5233bf1d7c65a073a4ea4e87
- SHA256
  
  8734e46e42b89a179abfb4d28d2b96a1eaaa230f98ad4bd048ceb6b69df2af1b
- SHA512
  
  38529a9a6197d6550834f5156375fa155483e07170b34ad1465381b98e8c574d2994753d335d5095ec06b3c1ea63c3e64b63730cc962b2ee87b5e8d64a299f68
- SSDEEP
  
  3072:sdIU56AuGiympJ5xLtgPtfLbDr/EznYfzB9BSwW:G0SiysHfglvDr/YOzLc
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence