ef5891878d95afac681db3027fdf3ef34be22c30787cb3e047e57de15ddfe209 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd5f0dde57f4f5fe2089ed1236b02a60N.exe
Size

81KB
Sample

240725-n22eqszglc
MD5

cd5f0dde57f4f5fe2089ed1236b02a60
SHA1

db49547a04d0fec8ac206df9a93ecf2adbc9f0c3
SHA256

ef5891878d95afac681db3027fdf3ef34be22c30787cb3e047e57de15ddfe209
SHA512

68adbed2be512bb744353d9cd0e96643c4be361ef9ab72473f639256d5022b4d971d1b8f53dec51005e370fface0aa63d1a5372a6bb99debc99768b578a22271
SSDEEP

1536:BijLYxV4wH3LO7BdFN6btsCgcInYAmupUpY1uku7m4LO++/+1m6KadhYxU33HX0L:wHYxqwQN6bW/zN1un/LrCimBaH8UH30L

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  cd5f0dde57f4f5fe2089ed1236b02a60N.exe
- Size
  
  81KB
- MD5
  
  cd5f0dde57f4f5fe2089ed1236b02a60
- SHA1
  
  db49547a04d0fec8ac206df9a93ecf2adbc9f0c3
- SHA256
  
  ef5891878d95afac681db3027fdf3ef34be22c30787cb3e047e57de15ddfe209
- SHA512
  
  68adbed2be512bb744353d9cd0e96643c4be361ef9ab72473f639256d5022b4d971d1b8f53dec51005e370fface0aa63d1a5372a6bb99debc99768b578a22271
- SSDEEP
  
  1536:BijLYxV4wH3LO7BdFN6btsCgcInYAmupUpY1uku7m4LO++/+1m6KadhYxU33HX0L:wHYxqwQN6bW/zN1un/LrCimBaH8UH30L
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence