4f14a0d0fbc2fa3707058b45af01629ecb6034505f5b8e528d699f97c7fc65cf | Triage

Sharing

General

Target

7d8ffc84b5afed8fe08984f30a6677b0N.exe
Size

128KB
Sample

240727-cb2r2azbql
MD5

7d8ffc84b5afed8fe08984f30a6677b0
SHA1

07b1a461c4007f8b447d48e761ad8be8c0a2bf43
SHA256

4f14a0d0fbc2fa3707058b45af01629ecb6034505f5b8e528d699f97c7fc65cf
SHA512

7bd72205d032eae919632d7745af5c37784a43f4d16f92c79aa45bec15516e91fe40617b044900529da2a0a963e32dfc46d74101b5a62ad233085bbfca7f696d
SSDEEP

3072:0g40XyYg0tDrFDHZtOgxBOXXwwfBoD6N3h8N5Gg:0g4WnL5tTDUZNSN57

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7d8ffc84b5afed8fe08984f30a6677b0N.exe
- Size
  
  128KB
- MD5
  
  7d8ffc84b5afed8fe08984f30a6677b0
- SHA1
  
  07b1a461c4007f8b447d48e761ad8be8c0a2bf43
- SHA256
  
  4f14a0d0fbc2fa3707058b45af01629ecb6034505f5b8e528d699f97c7fc65cf
- SHA512
  
  7bd72205d032eae919632d7745af5c37784a43f4d16f92c79aa45bec15516e91fe40617b044900529da2a0a963e32dfc46d74101b5a62ad233085bbfca7f696d
- SSDEEP
  
  3072:0g40XyYg0tDrFDHZtOgxBOXXwwfBoD6N3h8N5Gg:0g4WnL5tTDUZNSN57
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence