1c7e2a3680a2620b76c4b0a4d1d39a6e7aaa9da314872fd4c88f1cb891c1c275 | Triage

Sharing

General

Target

70f53da53c6a242132b6d5dd55afc130N.exe
Size

896KB
Sample

240727-ajp24axcnc
MD5

70f53da53c6a242132b6d5dd55afc130
SHA1

23524fbe7acf662b6bf22019be5013d5587e4cb0
SHA256

1c7e2a3680a2620b76c4b0a4d1d39a6e7aaa9da314872fd4c88f1cb891c1c275
SHA512

95cb1c986efc966f46f1148a2cd7c34b4becd7bf91149b529d04398041ea7f4e6a636f964af26b123c6d56a6310500e22b2a7a5378f23e7272ca0d8b3d9ede87
SSDEEP

6144:o4C8q25CPXbo92ynnZMqKLDK2Q9zsyVH3imoQiRLsmAKWEnaW377a85n0R0tHII7:WMFMusMH0QiRLsR4P377a20R01F50+5

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  70f53da53c6a242132b6d5dd55afc130N.exe
- Size
  
  896KB
- MD5
  
  70f53da53c6a242132b6d5dd55afc130
- SHA1
  
  23524fbe7acf662b6bf22019be5013d5587e4cb0
- SHA256
  
  1c7e2a3680a2620b76c4b0a4d1d39a6e7aaa9da314872fd4c88f1cb891c1c275
- SHA512
  
  95cb1c986efc966f46f1148a2cd7c34b4becd7bf91149b529d04398041ea7f4e6a636f964af26b123c6d56a6310500e22b2a7a5378f23e7272ca0d8b3d9ede87
- SSDEEP
  
  6144:o4C8q25CPXbo92ynnZMqKLDK2Q9zsyVH3imoQiRLsmAKWEnaW377a85n0R0tHII7:WMFMusMH0QiRLsR4P377a20R01F50+5
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence