b0df3c494b79053336a0bbf37618fbcf9457cd7bf891242954c0d2542b4dbed1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a0786506ff1edccd5eb9b6974f5d52f0N.exe
Size

248KB
Sample

240805-r21pzsyfpn
MD5

a0786506ff1edccd5eb9b6974f5d52f0
SHA1

8de9cde8eb16f33cf3686d9dd996cf2ba081ad65
SHA256

b0df3c494b79053336a0bbf37618fbcf9457cd7bf891242954c0d2542b4dbed1
SHA512

97297cb3879b9260d1acb23c21afce9528f58cafff32e7e18612afa4b08f79109d70b027d339965199d25dcd187a0c148a02c4b60ac5f254abddc18c1921b46e
SSDEEP

1536:OQBmligtN8FzCgCXN11d6RNGwVNtBqqGBABiovRXlhn4SPIdVHReHXc/B07urCyP:TBzLAgUN12SwVAURfE+HXAB0kCySYo0B

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a0786506ff1edccd5eb9b6974f5d52f0N.exe
- Size
  
  248KB
- MD5
  
  a0786506ff1edccd5eb9b6974f5d52f0
- SHA1
  
  8de9cde8eb16f33cf3686d9dd996cf2ba081ad65
- SHA256
  
  b0df3c494b79053336a0bbf37618fbcf9457cd7bf891242954c0d2542b4dbed1
- SHA512
  
  97297cb3879b9260d1acb23c21afce9528f58cafff32e7e18612afa4b08f79109d70b027d339965199d25dcd187a0c148a02c4b60ac5f254abddc18c1921b46e
- SSDEEP
  
  1536:OQBmligtN8FzCgCXN11d6RNGwVNtBqqGBABiovRXlhn4SPIdVHReHXc/B07urCyP:TBzLAgUN12SwVAURfE+HXAB0kCySYo0B
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence