e381492585bae5e22782ea5fba7122278d57f2b0c9eeabb4520697ebc7b3381e | Triage

Sharing

General

Target

e381492585bae5e22782ea5fba7122278d57f2b0c9eeabb4520697ebc7b3381eN
Size

96KB
Sample

241002-fqb2psycmp
MD5

5d989d361a801d4aeda96b61aa8d17d0
SHA1

9b401cfc43304c4e2efc2c2d45c3f6fa1e689180
SHA256

e381492585bae5e22782ea5fba7122278d57f2b0c9eeabb4520697ebc7b3381e
SHA512

31bb427a970609ce7da63d2fd40231440e5730e34470d84c0c04048da1fdccc4d4b14105ead5f4e748897998cfa9e8ed3ecbc335afcecbfd04b03a728f129ae7
SSDEEP

1536:IJkmDgOdUPD7yyZlAY6HpPWEFSCZ1ME2XZsRQteRkRLJzeLD9N0iQGRNQR8RyV+G:IJnDgOofPjAYYFS3mecSJdEN0s4WE+3W

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e381492585bae5e22782ea5fba7122278d57f2b0c9eeabb4520697ebc7b3381eN
- Size
  
  96KB
- MD5
  
  5d989d361a801d4aeda96b61aa8d17d0
- SHA1
  
  9b401cfc43304c4e2efc2c2d45c3f6fa1e689180
- SHA256
  
  e381492585bae5e22782ea5fba7122278d57f2b0c9eeabb4520697ebc7b3381e
- SHA512
  
  31bb427a970609ce7da63d2fd40231440e5730e34470d84c0c04048da1fdccc4d4b14105ead5f4e748897998cfa9e8ed3ecbc335afcecbfd04b03a728f129ae7
- SSDEEP
  
  1536:IJkmDgOdUPD7yyZlAY6HpPWEFSCZ1ME2XZsRQteRkRLJzeLD9N0iQGRNQR8RyV+G:IJnDgOofPjAYYFS3mecSJdEN0s4WE+3W
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence