020ed38555d46d0043df0716fc94b7b823ae2972ecbba9e423f9dfcf756fea74 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3635eb7a24aa3e6f19d77a6cebce7b0N.exe
Size

128KB
Sample

240715-mcvp8a1fnq
MD5

c3635eb7a24aa3e6f19d77a6cebce7b0
SHA1

b006a32d032d402d776685fa29501145232d8b6f
SHA256

020ed38555d46d0043df0716fc94b7b823ae2972ecbba9e423f9dfcf756fea74
SHA512

c53c2cb01ca6af3aa119b3b2ebc87b0f1002a77d75733ad12e61388c2a9c0fbdeece152fc76bedc39a4e5870689ce85fc9ec91046662bb1ae6ad1d8961d9427b
SSDEEP

1536:ngJxkAmrFvxrFcLgwWhO9hWElXVGgaEqZQe8h2ELUR3ZBs9wBtFQoXa+dJnEBct4:nPFbhAHnZe1Ek3Zi9w3FQo7fnEBctcp

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c3635eb7a24aa3e6f19d77a6cebce7b0N.exe
- Size
  
  128KB
- MD5
  
  c3635eb7a24aa3e6f19d77a6cebce7b0
- SHA1
  
  b006a32d032d402d776685fa29501145232d8b6f
- SHA256
  
  020ed38555d46d0043df0716fc94b7b823ae2972ecbba9e423f9dfcf756fea74
- SHA512
  
  c53c2cb01ca6af3aa119b3b2ebc87b0f1002a77d75733ad12e61388c2a9c0fbdeece152fc76bedc39a4e5870689ce85fc9ec91046662bb1ae6ad1d8961d9427b
- SSDEEP
  
  1536:ngJxkAmrFvxrFcLgwWhO9hWElXVGgaEqZQe8h2ELUR3ZBs9wBtFQoXa+dJnEBct4:nPFbhAHnZe1Ek3Zi9w3FQo7fnEBctcp
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2