0071f088fc91d3087fa3967e9124e90f2f5b54ffc3f75026a86dde698d4ff95a | Triage

Sharing

General

Target

17be80e82b771abd08a14b7f77946760N.exe
Size

64KB
Sample

240801-2y5jwavhrh
MD5

17be80e82b771abd08a14b7f77946760
SHA1

30172b7448a8261e5fc95074d8a574d5cdb78c90
SHA256

0071f088fc91d3087fa3967e9124e90f2f5b54ffc3f75026a86dde698d4ff95a
SHA512

35f198e8a588ebb9da22e1e9e283a71827c56832861ee3cfbab15b9660004036900c4ab3c1e8d6a64d1c1f97a94a57e9048f275d1be1d7e3b7b4db441176ff40
SSDEEP

768:hHRWv1Pd/stBcpfXvfnFMfGuUYaY/nufQrE6//1H5NPeOEFEkzWpeAbMb6LqyizC:hUvdaWFIlaY/nS6FPeO6XKhbMbt2

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  17be80e82b771abd08a14b7f77946760N.exe
- Size
  
  64KB
- MD5
  
  17be80e82b771abd08a14b7f77946760
- SHA1
  
  30172b7448a8261e5fc95074d8a574d5cdb78c90
- SHA256
  
  0071f088fc91d3087fa3967e9124e90f2f5b54ffc3f75026a86dde698d4ff95a
- SHA512
  
  35f198e8a588ebb9da22e1e9e283a71827c56832861ee3cfbab15b9660004036900c4ab3c1e8d6a64d1c1f97a94a57e9048f275d1be1d7e3b7b4db441176ff40
- SSDEEP
  
  768:hHRWv1Pd/stBcpfXvfnFMfGuUYaY/nufQrE6//1H5NPeOEFEkzWpeAbMb6LqyizC:hUvdaWFIlaY/nS6FPeO6XKhbMbt2
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence