1879e3de43de8a859b70dd612dc479305f4cc66d60dba5919039a5a637c67ba5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13072023BUILD.exe
Size

6.7MB
Sample

230801-r1mfzahe6y
MD5

627fff336390bbbd2908f3bfe195ac31
SHA1

5717e9ddfa7155057bf45f4112f74559cbe16cce
SHA256

1879e3de43de8a859b70dd612dc479305f4cc66d60dba5919039a5a637c67ba5
SHA512

6722e9950d777a44d33058df50331528c350e59a476d73b4e5c20907fa11e512af863d0ac42b2638f28a2ff510e092958ad5824612e9bf6286427b8e4ea6236b
SSDEEP

196608:uQ83VHGpPg/zfVsMHLP2/I5nHDyQxY3nAl7QIl1Ce:MZQCxrPtnHDyMYXAtT

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  13072023BUILD.exe
- Size
  
  6.7MB
- MD5
  
  627fff336390bbbd2908f3bfe195ac31
- SHA1
  
  5717e9ddfa7155057bf45f4112f74559cbe16cce
- SHA256
  
  1879e3de43de8a859b70dd612dc479305f4cc66d60dba5919039a5a637c67ba5
- SHA512
  
  6722e9950d777a44d33058df50331528c350e59a476d73b4e5c20907fa11e512af863d0ac42b2638f28a2ff510e092958ad5824612e9bf6286427b8e4ea6236b
- SSDEEP
  
  196608:uQ83VHGpPg/zfVsMHLP2/I5nHDyQxY3nAl7QIl1Ce:MZQCxrPtnHDyMYXAtT
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3