4d9e20e1b6eee341ea214589b4e064cd759048a94a2a552d8623d84494f8b417 | Triage

Sharing

General

Target

14d005bb2c65e2ddbcc248398a365e80N
Size

64KB
Sample

240913-fxndbawgme
MD5

14d005bb2c65e2ddbcc248398a365e80
SHA1

ac399f7cf080c409e848f21784e61d8cf70efea9
SHA256

4d9e20e1b6eee341ea214589b4e064cd759048a94a2a552d8623d84494f8b417
SHA512

38b8879ecc50f183a1db7b59afc27ccfcabd5b0d7ccede41bc3cde78362a9b2be70b5f1f0220eec17348057712b29bc46dd6b9f0268305f346b7fc20531f52f1
SSDEEP

1536:sUavenm5Dt84nd3b/M9I3ryff/LaoZ0O95EiYzDfWqc:Lnq84nN/M9I3ryf7aQNBYzTWqc

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  14d005bb2c65e2ddbcc248398a365e80N
- Size
  
  64KB
- MD5
  
  14d005bb2c65e2ddbcc248398a365e80
- SHA1
  
  ac399f7cf080c409e848f21784e61d8cf70efea9
- SHA256
  
  4d9e20e1b6eee341ea214589b4e064cd759048a94a2a552d8623d84494f8b417
- SHA512
  
  38b8879ecc50f183a1db7b59afc27ccfcabd5b0d7ccede41bc3cde78362a9b2be70b5f1f0220eec17348057712b29bc46dd6b9f0268305f346b7fc20531f52f1
- SSDEEP
  
  1536:sUavenm5Dt84nd3b/M9I3ryff/LaoZ0O95EiYzDfWqc:Lnq84nN/M9I3ryf7aQNBYzTWqc
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence