20003fd986c51aeb5a4a02755c8a52fade8ae778fc2e541427667ebd86771813 | Triage

Sharing

General

Target

8dc52341ea4f098be79f13963e46a170N.exe
Size

422KB
Sample

240727-emvtzaweqr
MD5

8dc52341ea4f098be79f13963e46a170
SHA1

476eb0ae8000977fe2707a270ccf6172cb952b5e
SHA256

20003fd986c51aeb5a4a02755c8a52fade8ae778fc2e541427667ebd86771813
SHA512

ff4f052d51ffea8c319b17fc1f1fb199e12a60edd42e26a237daf1000a1d49ae33cb1642a15edaa023e8282c1d8ef4db374e3d54d8ea13132ec8a20e17c47b09
SSDEEP

6144:chA1Lj2e8fbabO6FSPnvZU1AF+6FSPnvZhDYsKKo6FSPnvZU1AF+6FSPnvZq:ZZjfEGaXgA4XfczXgA4XA

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8dc52341ea4f098be79f13963e46a170N.exe
- Size
  
  422KB
- MD5
  
  8dc52341ea4f098be79f13963e46a170
- SHA1
  
  476eb0ae8000977fe2707a270ccf6172cb952b5e
- SHA256
  
  20003fd986c51aeb5a4a02755c8a52fade8ae778fc2e541427667ebd86771813
- SHA512
  
  ff4f052d51ffea8c319b17fc1f1fb199e12a60edd42e26a237daf1000a1d49ae33cb1642a15edaa023e8282c1d8ef4db374e3d54d8ea13132ec8a20e17c47b09
- SSDEEP
  
  6144:chA1Lj2e8fbabO6FSPnvZU1AF+6FSPnvZhDYsKKo6FSPnvZU1AF+6FSPnvZq:ZZjfEGaXgA4XfczXgA4XA
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence