1591cc890c53cd750d4341fb90bd3afaf41a79d404fc90666c11be6ae2f4ff16 | Triage

Sharing

General

Target

1591cc890c53cd750d4341fb90bd3afaf41a79d404fc90666c11be6ae2f4ff16.exe
Size

443KB
Sample

241122-mnm5hsvncp
MD5

75fbf5aef91093a6b889ee5be6aed404
SHA1

01137c24da620cdb70b96c83e3e39cca1ee85001
SHA256

1591cc890c53cd750d4341fb90bd3afaf41a79d404fc90666c11be6ae2f4ff16
SHA512

aeab3e152fc6852ae0fea1f703da46643ee39871b911845bea9ebd2cc9651ad95133f9dc16a36ef3b5e17004f87561ed0ac3ca66d78ef3021dc817e13f9de76f
SSDEEP

6144:FwDyr7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjwszeXmOEgHim:Fwy1J1HJ1Uj+HiPji

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1591cc890c53cd750d4341fb90bd3afaf41a79d404fc90666c11be6ae2f4ff16.exe
- Size
  
  443KB
- MD5
  
  75fbf5aef91093a6b889ee5be6aed404
- SHA1
  
  01137c24da620cdb70b96c83e3e39cca1ee85001
- SHA256
  
  1591cc890c53cd750d4341fb90bd3afaf41a79d404fc90666c11be6ae2f4ff16
- SHA512
  
  aeab3e152fc6852ae0fea1f703da46643ee39871b911845bea9ebd2cc9651ad95133f9dc16a36ef3b5e17004f87561ed0ac3ca66d78ef3021dc817e13f9de76f
- SSDEEP
  
  6144:FwDyr7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjwszeXmOEgHim:Fwy1J1HJ1Uj+HiPji
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence