f12ac4ce1a8fc8741e4daf76b480c99df0dcac8ad688db5cf3e038ffbe5d6f88 | Triage

Sharing

General

Target

f12ac4ce1a8fc8741e4daf76b480c99df0dcac8ad688db5cf3e038ffbe5d6f88N.exe
Size

465KB
Sample

241120-c1ry5atlan
MD5

0788bd6f82cbc2cbd4fb79b32483f520
SHA1

630d1f2a4419b2cf5ad2528a050bc649814b9df0
SHA256

f12ac4ce1a8fc8741e4daf76b480c99df0dcac8ad688db5cf3e038ffbe5d6f88
SHA512

4043a915fb9b97c4ac3a8aee8b31117a8bec37b9e7f72ff84bc33abf3cd99462fd18bdcc4c4b1dbe1ad48859c50607dc428b49365e3ae6016314f048a2826cac
SSDEEP

6144:HU2OoZCiWZVu3njPX9ZAkvntd4ljd3rKzwN8Jlljd3njPX9ZAk3fs:HjOclW+jP9ZtVkjpKXjtjP9Zt0

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f12ac4ce1a8fc8741e4daf76b480c99df0dcac8ad688db5cf3e038ffbe5d6f88N.exe
- Size
  
  465KB
- MD5
  
  0788bd6f82cbc2cbd4fb79b32483f520
- SHA1
  
  630d1f2a4419b2cf5ad2528a050bc649814b9df0
- SHA256
  
  f12ac4ce1a8fc8741e4daf76b480c99df0dcac8ad688db5cf3e038ffbe5d6f88
- SHA512
  
  4043a915fb9b97c4ac3a8aee8b31117a8bec37b9e7f72ff84bc33abf3cd99462fd18bdcc4c4b1dbe1ad48859c50607dc428b49365e3ae6016314f048a2826cac
- SSDEEP
  
  6144:HU2OoZCiWZVu3njPX9ZAkvntd4ljd3rKzwN8Jlljd3njPX9ZAk3fs:HjOclW+jP9ZtVkjpKXjtjP9Zt0
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence