8179710518e00daa408f0da103d44fb4cee9aee55daa179b450279038a235bb6 | Triage

Sharing

General

Target

7dd19a0cb136f771837e52be711a1290N.exe
Size

376KB
Sample

240727-cdsl5ssfpb
MD5

7dd19a0cb136f771837e52be711a1290
SHA1

882d7d42fc2fe06eb674f3b3c5d39265240ef2c4
SHA256

8179710518e00daa408f0da103d44fb4cee9aee55daa179b450279038a235bb6
SHA512

632400250b05afd9b6eab6c6f7b21ea4a108224feba6f0bb2e19ef66df954a10952bc3f47cafc6ec010971596ca70477488b7d8b481748a50a6431b8af6b3b8b
SSDEEP

3072:isAVXQSANuZnk/lCA9hVAURfE+HXAB0kCySYo0CkkhHs4WfO7:isSXQDNqk7hRs+HXc0uo0CkkW1fs

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7dd19a0cb136f771837e52be711a1290N.exe
- Size
  
  376KB
- MD5
  
  7dd19a0cb136f771837e52be711a1290
- SHA1
  
  882d7d42fc2fe06eb674f3b3c5d39265240ef2c4
- SHA256
  
  8179710518e00daa408f0da103d44fb4cee9aee55daa179b450279038a235bb6
- SHA512
  
  632400250b05afd9b6eab6c6f7b21ea4a108224feba6f0bb2e19ef66df954a10952bc3f47cafc6ec010971596ca70477488b7d8b481748a50a6431b8af6b3b8b
- SSDEEP
  
  3072:isAVXQSANuZnk/lCA9hVAURfE+HXAB0kCySYo0CkkhHs4WfO7:isSXQDNqk7hRs+HXc0uo0CkkW1fs
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence