8b35427157f3f0771bc41729bf1a03004c581b5fc3371dc89a294ff6ec01c725 | Triage

Sharing

General

Target

cd3d88f11fd7138466042d1550a4e2b0N.exe
Size

49KB
Sample

240907-pxc21swaln
MD5

cd3d88f11fd7138466042d1550a4e2b0
SHA1

0a6d2e2ac5b9d82752c5879649a6bedfbb2a5437
SHA256

8b35427157f3f0771bc41729bf1a03004c581b5fc3371dc89a294ff6ec01c725
SHA512

4388993aa437ce215968cde93289994e4da774804bcfcb2273970f0106cbe29da5624a61fe18b3474afae4c0eff923009c982d968b2527cf014640d5817587ce
SSDEEP

768:ErM/oBlBRqg6KjWAHqkjj8MhsLEmYkXxxl2dGo6I/1H5WI2Xdnh:ErM/oBlB0DkqkI5YkXxf2DG

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  cd3d88f11fd7138466042d1550a4e2b0N.exe
- Size
  
  49KB
- MD5
  
  cd3d88f11fd7138466042d1550a4e2b0
- SHA1
  
  0a6d2e2ac5b9d82752c5879649a6bedfbb2a5437
- SHA256
  
  8b35427157f3f0771bc41729bf1a03004c581b5fc3371dc89a294ff6ec01c725
- SHA512
  
  4388993aa437ce215968cde93289994e4da774804bcfcb2273970f0106cbe29da5624a61fe18b3474afae4c0eff923009c982d968b2527cf014640d5817587ce
- SSDEEP
  
  768:ErM/oBlBRqg6KjWAHqkjj8MhsLEmYkXxxl2dGo6I/1H5WI2Xdnh:ErM/oBlB0DkqkI5YkXxf2DG
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence