75088ea800624dd820ace277ab0606878a177bea8bef07993d3b9de10acc1d03 | Triage

Sharing

General

Target

778db9e942cc6fe33357b2c429528390N.exe
Size

187KB
Sample

240727-bfmcgawgpl
MD5

778db9e942cc6fe33357b2c429528390
SHA1

c1d11ed166121c02a13949e496fdecd43dd8bd05
SHA256

75088ea800624dd820ace277ab0606878a177bea8bef07993d3b9de10acc1d03
SHA512

3472de4aeb76fcc18e355a4f638fbed79c318db1c78d74f8804bcc110bd7b2aad97aba80a8e86543d33b747dfe4c50ef8f8b17eb6107c83fb33a84f673e48ef2
SSDEEP

3072:TyAn8o3xoAwkIBAWVgtRQ2c+tlB5xpWJLM77OkeCK2+hDueH:Bn8oBoAwkbWV+tbFOLM77OLLt

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  778db9e942cc6fe33357b2c429528390N.exe
- Size
  
  187KB
- MD5
  
  778db9e942cc6fe33357b2c429528390
- SHA1
  
  c1d11ed166121c02a13949e496fdecd43dd8bd05
- SHA256
  
  75088ea800624dd820ace277ab0606878a177bea8bef07993d3b9de10acc1d03
- SHA512
  
  3472de4aeb76fcc18e355a4f638fbed79c318db1c78d74f8804bcc110bd7b2aad97aba80a8e86543d33b747dfe4c50ef8f8b17eb6107c83fb33a84f673e48ef2
- SSDEEP
  
  3072:TyAn8o3xoAwkIBAWVgtRQ2c+tlB5xpWJLM77OkeCK2+hDueH:Bn8oBoAwkbWV+tbFOLM77OLLt
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence