13c07342332aac04316e6a8dcf65d4345aa3ba962dcdc2738b9c54dfb685fce1 | Triage

Sharing

General

Target

7e195d80b9f4e837839f1c7dca04d1e0N.exe
Size

465KB
Sample

240807-hhdlnsxbjc
MD5

7e195d80b9f4e837839f1c7dca04d1e0
SHA1

6843d7bf36fc80c933b3862695b4b249e05cc38d
SHA256

13c07342332aac04316e6a8dcf65d4345aa3ba962dcdc2738b9c54dfb685fce1
SHA512

61d560898f98325ba31bb3f523f389bf52c30859589c73bafcb5a7e7ec2c4f5c6b20a862873d9716724f6412020ab960f210335f5a04d8f05ca428345b11f635
SSDEEP

6144:TlTf04kpu3njPX9ZAkvntd4ljd3rKzwN8Jlljd3njPX9ZAk3fs:ZLxxjP9ZtVkjpKXjtjP9Zt0

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7e195d80b9f4e837839f1c7dca04d1e0N.exe
- Size
  
  465KB
- MD5
  
  7e195d80b9f4e837839f1c7dca04d1e0
- SHA1
  
  6843d7bf36fc80c933b3862695b4b249e05cc38d
- SHA256
  
  13c07342332aac04316e6a8dcf65d4345aa3ba962dcdc2738b9c54dfb685fce1
- SHA512
  
  61d560898f98325ba31bb3f523f389bf52c30859589c73bafcb5a7e7ec2c4f5c6b20a862873d9716724f6412020ab960f210335f5a04d8f05ca428345b11f635
- SSDEEP
  
  6144:TlTf04kpu3njPX9ZAkvntd4ljd3rKzwN8Jlljd3njPX9ZAk3fs:ZLxxjP9ZtVkjpKXjtjP9Zt0
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence