fb19c9d36ae9072183f3ec7419ba2ebd967fc07f3c73271f9c473c9e73e3e3af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

769c630d88c37b29a866cb2bac6e7870N.exe
Size

64KB
Sample

240802-jsbeqsshpk
MD5

769c630d88c37b29a866cb2bac6e7870
SHA1

d33bc5d38beafeff289671fa1e465db550124d44
SHA256

fb19c9d36ae9072183f3ec7419ba2ebd967fc07f3c73271f9c473c9e73e3e3af
SHA512

0aa1016ace705b0093e1452f05a8cbac2deaab3594e888c762179ab1c113977b44bc70a3c3b1748bd577625fc91a7fe48b6fa16bedd0d70abe477460659de0ca
SSDEEP

1536:pBt+w3ZYiv8JR7YKWrTGKu8eO6XKhbMbt2:ww7v8j7Y9ZuTO6Xjt2

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  769c630d88c37b29a866cb2bac6e7870N.exe
- Size
  
  64KB
- MD5
  
  769c630d88c37b29a866cb2bac6e7870
- SHA1
  
  d33bc5d38beafeff289671fa1e465db550124d44
- SHA256
  
  fb19c9d36ae9072183f3ec7419ba2ebd967fc07f3c73271f9c473c9e73e3e3af
- SHA512
  
  0aa1016ace705b0093e1452f05a8cbac2deaab3594e888c762179ab1c113977b44bc70a3c3b1748bd577625fc91a7fe48b6fa16bedd0d70abe477460659de0ca
- SSDEEP
  
  1536:pBt+w3ZYiv8JR7YKWrTGKu8eO6XKhbMbt2:ww7v8j7Y9ZuTO6Xjt2
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence