d892b889671325da74ced138aed8542a91e5b2bc9128bd223072960b39aa2fbe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Only_BE.exe.exe
Size

667KB
Sample

240128-rmbgjsdfel
MD5

0279d1ea1084ac5ca2d35f85eaf6fb04
SHA1

88845526585893359414fcad19c5d601d7fd67e5
SHA256

d892b889671325da74ced138aed8542a91e5b2bc9128bd223072960b39aa2fbe
SHA512

8fe89c1a0d200b1636a331271cfb7292a5856eeb0b8959145f494ba20567fd110a74f319e14640792cad623e10d9ee7ffbae467ceb9c8dcca4df3493884afc13
SSDEEP

12288:9Sqk6BaEg5H/g4+C0H5Nn56TnSEl1yt6zzng0LYdym2jO+Aem8Ag4:MqqP5fg4+C0H5NnaRGg

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  Only_BE.exe.exe
- Size
  
  667KB
- MD5
  
  0279d1ea1084ac5ca2d35f85eaf6fb04
- SHA1
  
  88845526585893359414fcad19c5d601d7fd67e5
- SHA256
  
  d892b889671325da74ced138aed8542a91e5b2bc9128bd223072960b39aa2fbe
- SHA512
  
  8fe89c1a0d200b1636a331271cfb7292a5856eeb0b8959145f494ba20567fd110a74f319e14640792cad623e10d9ee7ffbae467ceb9c8dcca4df3493884afc13
- SSDEEP
  
  12288:9Sqk6BaEg5H/g4+C0H5Nn56TnSEl1yt6zzng0LYdym2jO+Aem8Ag4:MqqP5fg4+C0H5NnaRGg
Score

8^/10

persistence
- Downloads MZ/PE file
- Sets service image path in registry
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1