cde66f37d2047df55fa9e82534dc2d3a5f27ffdb5ea1d740db631afac45fe79d | Triage

Sharing

General

Target

b75bf159036a0b1462b598fd42560960N
Size

159KB
Sample

240908-nt46nawflc
MD5

b75bf159036a0b1462b598fd42560960
SHA1

a6edd7add1706d2e3101e75d7685805efdc7c9cd
SHA256

cde66f37d2047df55fa9e82534dc2d3a5f27ffdb5ea1d740db631afac45fe79d
SHA512

ab66748fdf9796d703d41c595da78ee6ca1560c1ca9f0b2cb29c2dcf25a879cae01a3349ffa32615b7fdb84fe58d4f5c23217e2da718eb8d17887ff1e8a62376
SSDEEP

3072:kz4B8OOJnSwT093F3vVeT8TBLoJujbwf1nFzwSAJB8FgBY5nd/M9dA:g4LOj493gQBMJ1n6xJmPM9dA

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b75bf159036a0b1462b598fd42560960N
- Size
  
  159KB
- MD5
  
  b75bf159036a0b1462b598fd42560960
- SHA1
  
  a6edd7add1706d2e3101e75d7685805efdc7c9cd
- SHA256
  
  cde66f37d2047df55fa9e82534dc2d3a5f27ffdb5ea1d740db631afac45fe79d
- SHA512
  
  ab66748fdf9796d703d41c595da78ee6ca1560c1ca9f0b2cb29c2dcf25a879cae01a3349ffa32615b7fdb84fe58d4f5c23217e2da718eb8d17887ff1e8a62376
- SSDEEP
  
  3072:kz4B8OOJnSwT093F3vVeT8TBLoJujbwf1nFzwSAJB8FgBY5nd/M9dA:g4LOj493gQBMJ1n6xJmPM9dA
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence