b9d448d8609936ae3b4373d39b259a98e570983d04970b89a5b38bd0cdfdba0b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49f97f80cac21a5f4cd60388b8c5af80N.exe
Size

97KB
Sample

240803-erphraxerc
MD5

49f97f80cac21a5f4cd60388b8c5af80
SHA1

2c40023629daf4dec3fbcad6976109f4dad8d504
SHA256

b9d448d8609936ae3b4373d39b259a98e570983d04970b89a5b38bd0cdfdba0b
SHA512

6b4f0db29e5a8e006dad9d5d3660ffad9bc757eb9d612f6f93b0abef4db04f718807c723219fd52379fcdbde1e56adf312a6b0f64774ed4fc6663409c9da3192
SSDEEP

1536:iF0AJzLopHG9aa+9qX3apJoAKWYr0vcioyjp2RXKTzRZICrWaGZh7U:iiApLN9aa+9U2EWyipjp2R6JJrWNZa

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  49f97f80cac21a5f4cd60388b8c5af80N.exe
- Size
  
  97KB
- MD5
  
  49f97f80cac21a5f4cd60388b8c5af80
- SHA1
  
  2c40023629daf4dec3fbcad6976109f4dad8d504
- SHA256
  
  b9d448d8609936ae3b4373d39b259a98e570983d04970b89a5b38bd0cdfdba0b
- SHA512
  
  6b4f0db29e5a8e006dad9d5d3660ffad9bc757eb9d612f6f93b0abef4db04f718807c723219fd52379fcdbde1e56adf312a6b0f64774ed4fc6663409c9da3192
- SSDEEP
  
  1536:iF0AJzLopHG9aa+9qX3apJoAKWYr0vcioyjp2RXKTzRZICrWaGZh7U:iiApLN9aa+9U2EWyipjp2R6JJrWNZa
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence