50b5ffe2a0fd70102dec716ace1342183f94aae9391e643cbcf1e3147df69fbf | Triage

Sharing

General

Target

57f1e4f60f8f63d7cbd1bf21d22fae70N.exe
Size

93KB
Sample

240915-jfml8sshjr
MD5

57f1e4f60f8f63d7cbd1bf21d22fae70
SHA1

cad554ac3c86df140e25d09f6e3c2a5027960773
SHA256

50b5ffe2a0fd70102dec716ace1342183f94aae9391e643cbcf1e3147df69fbf
SHA512

6514ea201b352e1c343807c2d0b4f3d6a746f69e555abf683013bceb4623d95041f41455eed434d0c820254d38ef085fbd4fc35386da5ba428a02f3472733bd2
SSDEEP

1536:yQVkmUL4iyYzx9E2wnyuNHKPq3VdPdpf1b5FsaMiwihtIbbpkp:yUU5HpIVJrdpf1b5FdMiwaIbbpkp

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  57f1e4f60f8f63d7cbd1bf21d22fae70N.exe
- Size
  
  93KB
- MD5
  
  57f1e4f60f8f63d7cbd1bf21d22fae70
- SHA1
  
  cad554ac3c86df140e25d09f6e3c2a5027960773
- SHA256
  
  50b5ffe2a0fd70102dec716ace1342183f94aae9391e643cbcf1e3147df69fbf
- SHA512
  
  6514ea201b352e1c343807c2d0b4f3d6a746f69e555abf683013bceb4623d95041f41455eed434d0c820254d38ef085fbd4fc35386da5ba428a02f3472733bd2
- SSDEEP
  
  1536:yQVkmUL4iyYzx9E2wnyuNHKPq3VdPdpf1b5FsaMiwihtIbbpkp:yUU5HpIVJrdpf1b5FdMiwaIbbpkp
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence