7036bd9054f42dcb8f6dcb03ec8997d2f9271a641f2dea6e16bf0e9d42bd3e7e | Triage

Sharing

General

Target

716d9c245a69d9e8597ec079a1891800N.exe
Size

1024KB
Sample

240727-al1llsxdpb
MD5

716d9c245a69d9e8597ec079a1891800
SHA1

fed6c202fe47e571909a6f8e70679530c585b671
SHA256

7036bd9054f42dcb8f6dcb03ec8997d2f9271a641f2dea6e16bf0e9d42bd3e7e
SHA512

dc295388d620023446e37375650bd7835119c14ba8a44ad6fad46b0b71b876ec3c24768fd728aab9e93347fb9a0a35e193847ec5a5a26cf61ef50e534be6dfa1
SSDEEP

6144:a8Lh87TLyIV5+RAkOCOu0EajNVBZtHr9zM8d9CXdPipmMH/gysNkvC8vA+XTv7F+:a8L2XLyIrsSHCXwpnsKvNA+XTvZHe

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  716d9c245a69d9e8597ec079a1891800N.exe
- Size
  
  1024KB
- MD5
  
  716d9c245a69d9e8597ec079a1891800
- SHA1
  
  fed6c202fe47e571909a6f8e70679530c585b671
- SHA256
  
  7036bd9054f42dcb8f6dcb03ec8997d2f9271a641f2dea6e16bf0e9d42bd3e7e
- SHA512
  
  dc295388d620023446e37375650bd7835119c14ba8a44ad6fad46b0b71b876ec3c24768fd728aab9e93347fb9a0a35e193847ec5a5a26cf61ef50e534be6dfa1
- SSDEEP
  
  6144:a8Lh87TLyIV5+RAkOCOu0EajNVBZtHr9zM8d9CXdPipmMH/gysNkvC8vA+XTv7F+:a8L2XLyIrsSHCXwpnsKvNA+XTvZHe
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence