7d329ecf03ed08dfb327ae69c3f3e8b3cd76f6a2c6e59e24f30b74099f80234c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1a989480f6fdd8fe45714bedd7d15dd0N.exe
Size

2.7MB
Sample

240714-zlxbmaweld
MD5

1a989480f6fdd8fe45714bedd7d15dd0
SHA1

10764c91f59ee1bd6d44d0bd47ae2ba2dffa398c
SHA256

7d329ecf03ed08dfb327ae69c3f3e8b3cd76f6a2c6e59e24f30b74099f80234c
SHA512

bd15089e0572e9299f89af58bf8b0dba4237328b6728994cd04b0fa5a29cd1fa35821c56ddf59e533f3b6cdc59c3e717763270e98947059bae3b3a9794ce13f9
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBA9w4Sx:+R0pI/IQlUoMPdmpSpO4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1a989480f6fdd8fe45714bedd7d15dd0N.exe
- Size
  
  2.7MB
- MD5
  
  1a989480f6fdd8fe45714bedd7d15dd0
- SHA1
  
  10764c91f59ee1bd6d44d0bd47ae2ba2dffa398c
- SHA256
  
  7d329ecf03ed08dfb327ae69c3f3e8b3cd76f6a2c6e59e24f30b74099f80234c
- SHA512
  
  bd15089e0572e9299f89af58bf8b0dba4237328b6728994cd04b0fa5a29cd1fa35821c56ddf59e533f3b6cdc59c3e717763270e98947059bae3b3a9794ce13f9
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBA9w4Sx:+R0pI/IQlUoMPdmpSpO4
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2