fc9701041db51abd38c25bdd3e34fe24aa92cfb25d824ea1106f143e3c8df730 | Triage

Sharing

General

Target

be12e96fccf5bc692a51a1c6fdfb2b30N.exe
Size

576KB
Sample

240914-kqlncsvhlq
MD5

be12e96fccf5bc692a51a1c6fdfb2b30
SHA1

0cd3a276782e1c191026ab07de1c55bb2bd502ca
SHA256

fc9701041db51abd38c25bdd3e34fe24aa92cfb25d824ea1106f143e3c8df730
SHA512

9a032129247ef48ab936c22b6b914dbc1a9bd689d0122f19020341c1b0c047d37beb32d6fa4cc70f3a1d538d02e842cb08f5e9cc817c8c1390c043fc84e8b535
SSDEEP

12288:2TL5qbTGyXu1jGG1wsGeBgRTGAzciETdqvZNemWrsiLk6mqgSgRDO:8L5qbTGyXsGG1wsLUT3IipX6

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  be12e96fccf5bc692a51a1c6fdfb2b30N.exe
- Size
  
  576KB
- MD5
  
  be12e96fccf5bc692a51a1c6fdfb2b30
- SHA1
  
  0cd3a276782e1c191026ab07de1c55bb2bd502ca
- SHA256
  
  fc9701041db51abd38c25bdd3e34fe24aa92cfb25d824ea1106f143e3c8df730
- SHA512
  
  9a032129247ef48ab936c22b6b914dbc1a9bd689d0122f19020341c1b0c047d37beb32d6fa4cc70f3a1d538d02e842cb08f5e9cc817c8c1390c043fc84e8b535
- SSDEEP
  
  12288:2TL5qbTGyXu1jGG1wsGeBgRTGAzciETdqvZNemWrsiLk6mqgSgRDO:8L5qbTGyXsGG1wsLUT3IipX6
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence