7167ccf68cdb70f0252aab3f258ff1f26f4be8bc7c547d5e7b32d26392b96814 | Triage

Sharing

General

Target

122209b68eea2d3a7c5b43671ba317d0N.exe
Size

459KB
Sample

240727-2x541sshrn
MD5

122209b68eea2d3a7c5b43671ba317d0
SHA1

f791fc791a4fd46501e95a8a8f15fd6d0b44224c
SHA256

7167ccf68cdb70f0252aab3f258ff1f26f4be8bc7c547d5e7b32d26392b96814
SHA512

9e744a5adc5a388456e7935fa09b75b669e2ce276c6ad6520605f17d4cbbdc47492e2dd3a1bf467a25a1f2c1a5a981316117a529a16a6bff43ccdc01ddb19d66
SSDEEP

6144:o9FBYtvIdf7HdQGUHlbvu/MwGsmLrZNs/V4Lr5+Nod/MwGsmLrZNs/VKi/MwGsmp:o9fYCMmmpNs/V4g8MmmpNs/VXMmm

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  122209b68eea2d3a7c5b43671ba317d0N.exe
- Size
  
  459KB
- MD5
  
  122209b68eea2d3a7c5b43671ba317d0
- SHA1
  
  f791fc791a4fd46501e95a8a8f15fd6d0b44224c
- SHA256
  
  7167ccf68cdb70f0252aab3f258ff1f26f4be8bc7c547d5e7b32d26392b96814
- SHA512
  
  9e744a5adc5a388456e7935fa09b75b669e2ce276c6ad6520605f17d4cbbdc47492e2dd3a1bf467a25a1f2c1a5a981316117a529a16a6bff43ccdc01ddb19d66
- SSDEEP
  
  6144:o9FBYtvIdf7HdQGUHlbvu/MwGsmLrZNs/V4Lr5+Nod/MwGsmLrZNs/VKi/MwGsmp:o9fYCMmmpNs/V4g8MmmpNs/VXMmm
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence