5eb9525f870186f3004540c00467b734632a97bed9163ae364a2cde4b8a113ca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

387260241300ef3b0f36fad9646c8f30N.exe
Size

63KB
Sample

240724-cmlvyssdqj
MD5

387260241300ef3b0f36fad9646c8f30
SHA1

704f6dce6cfd98523231be6b7c7997f76e1c6f89
SHA256

5eb9525f870186f3004540c00467b734632a97bed9163ae364a2cde4b8a113ca
SHA512

864eaa8dca96c0985a45a549c0d1f411c0f011e1c7acc0606ed0fb66ff727052c479a78d4fef39dde780efa8c817e22d7208f6a62a428fc7b6858e2daa6a5340
SSDEEP

1536:zHtLIhb3gcI+ch3id8MsLjIpQ7fH1juIZo:zHhIhkr5EqDfH1juIZo

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  387260241300ef3b0f36fad9646c8f30N.exe
- Size
  
  63KB
- MD5
  
  387260241300ef3b0f36fad9646c8f30
- SHA1
  
  704f6dce6cfd98523231be6b7c7997f76e1c6f89
- SHA256
  
  5eb9525f870186f3004540c00467b734632a97bed9163ae364a2cde4b8a113ca
- SHA512
  
  864eaa8dca96c0985a45a549c0d1f411c0f011e1c7acc0606ed0fb66ff727052c479a78d4fef39dde780efa8c817e22d7208f6a62a428fc7b6858e2daa6a5340
- SSDEEP
  
  1536:zHtLIhb3gcI+ch3id8MsLjIpQ7fH1juIZo:zHhIhkr5EqDfH1juIZo
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence