23b8555bff60682b51c8dffa6b1b3cf250c5cb1679cf922e8a407358e3ee0a43 | Triage

Sharing

General

Target

f1b8c89b76b1c810027e3ccf2a60f1f0N.exe
Size

187KB
Sample

240915-nl3mvssdjr
MD5

f1b8c89b76b1c810027e3ccf2a60f1f0
SHA1

b6fba231dd9b369cf700863329b54e8abe648881
SHA256

23b8555bff60682b51c8dffa6b1b3cf250c5cb1679cf922e8a407358e3ee0a43
SHA512

08acac8d56277a00727ba017db5691af823288d6c2027411f31f5c059c243a7351eb768ae914e50bd4b00d5d45edc874da9851dc04b6989cd8577162cd75bf77
SSDEEP

3072:vQwNYgkkng+MRgeRZl2NkzwH5GJks8WYlOWe7VsayDZVZev1N:oekag+MBj9zwZ9s8SZq/svL

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f1b8c89b76b1c810027e3ccf2a60f1f0N.exe
- Size
  
  187KB
- MD5
  
  f1b8c89b76b1c810027e3ccf2a60f1f0
- SHA1
  
  b6fba231dd9b369cf700863329b54e8abe648881
- SHA256
  
  23b8555bff60682b51c8dffa6b1b3cf250c5cb1679cf922e8a407358e3ee0a43
- SHA512
  
  08acac8d56277a00727ba017db5691af823288d6c2027411f31f5c059c243a7351eb768ae914e50bd4b00d5d45edc874da9851dc04b6989cd8577162cd75bf77
- SSDEEP
  
  3072:vQwNYgkkng+MRgeRZl2NkzwH5GJks8WYlOWe7VsayDZVZev1N:oekag+MBj9zwZ9s8SZq/svL
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence