e5989a61d8ac5696587d71d7bcf3c796808075bd7ffef60f1707d7e31b11397f | Triage

Sharing

General

Target

747ab29fa10703e95211dddb38406090N.exe
Size

608KB
Sample

240727-a1cs4aycla
MD5

747ab29fa10703e95211dddb38406090
SHA1

501a4166a6ee1edd0f54809d7f1b151b1a35ae0d
SHA256

e5989a61d8ac5696587d71d7bcf3c796808075bd7ffef60f1707d7e31b11397f
SHA512

75a6a2582e2e71352d863f48dad5768300d89a283509ad2c7430376d2148929741d354bc2d6677d6c7bedddf7399f6f82f64387e1f0ab732d8614f2a065daeed
SSDEEP

12288:FFikY660fIaDZkY660f8jTK/XhdAwlt01t:FFigsaDZgQjGkwlg

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  747ab29fa10703e95211dddb38406090N.exe
- Size
  
  608KB
- MD5
  
  747ab29fa10703e95211dddb38406090
- SHA1
  
  501a4166a6ee1edd0f54809d7f1b151b1a35ae0d
- SHA256
  
  e5989a61d8ac5696587d71d7bcf3c796808075bd7ffef60f1707d7e31b11397f
- SHA512
  
  75a6a2582e2e71352d863f48dad5768300d89a283509ad2c7430376d2148929741d354bc2d6677d6c7bedddf7399f6f82f64387e1f0ab732d8614f2a065daeed
- SSDEEP
  
  12288:FFikY660fIaDZkY660f8jTK/XhdAwlt01t:FFigsaDZgQjGkwlg
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence