4d394b6d225c35546749d893654ccbca402e6690eb15c00f92b1d46ca69013da | Triage

Sharing

General

Target

d6884c47e0776c66dad7e85ca6857690N
Size

896KB
Sample

240909-eb4mqszfpr
MD5

d6884c47e0776c66dad7e85ca6857690
SHA1

cfc05aa971bcf1534791f73735ae57a3a7382278
SHA256

4d394b6d225c35546749d893654ccbca402e6690eb15c00f92b1d46ca69013da
SHA512

6b4c6ea0b697e10206c91666c1917165079247fe1d004736fa23a5097587cb73c438212674bfc1a31474a529d2b62e25c5e6a668f5198b7001016f366c205387
SSDEEP

12288:GFwjEpNxByvNv54B9f01ZmHByvNv5VwLonfBHLqF1Nw5ILonfByvNv5HV:GmjZvr4B9f01ZmQvrUENOVvr1

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d6884c47e0776c66dad7e85ca6857690N
- Size
  
  896KB
- MD5
  
  d6884c47e0776c66dad7e85ca6857690
- SHA1
  
  cfc05aa971bcf1534791f73735ae57a3a7382278
- SHA256
  
  4d394b6d225c35546749d893654ccbca402e6690eb15c00f92b1d46ca69013da
- SHA512
  
  6b4c6ea0b697e10206c91666c1917165079247fe1d004736fa23a5097587cb73c438212674bfc1a31474a529d2b62e25c5e6a668f5198b7001016f366c205387
- SSDEEP
  
  12288:GFwjEpNxByvNv54B9f01ZmHByvNv5VwLonfBHLqF1Nw5ILonfByvNv5HV:GmjZvr4B9f01ZmQvrUENOVvr1
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence