2a77ece7bce244a5ec8219172724c57f626af2db5edd394f4d77f001430199cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f539bda40430ed6e80286a71109d7a0N.exe
Size

80KB
Sample

240817-ad7d7avgre
MD5

0f539bda40430ed6e80286a71109d7a0
SHA1

642e2308009118066f97a3a3476b09a0dfbae67f
SHA256

2a77ece7bce244a5ec8219172724c57f626af2db5edd394f4d77f001430199cc
SHA512

ae1200b623566bb1e91021d6fb6d841ba9db66df056fe4796bc5cac9e7fc3c36b610bd0ddf9a086dac3ccf8027a2c610958b01e4254c21fbd94d03be4eb8201b
SSDEEP

1536:Qch5XCZtRShOc1mE6m3nnHPaDFgypAmHYWhG2LdS5DUHRbPa9b6i+sIk:Q4fBmEDHPaDFgypAmHfhrdS5DSCopsIk

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  0f539bda40430ed6e80286a71109d7a0N.exe
- Size
  
  80KB
- MD5
  
  0f539bda40430ed6e80286a71109d7a0
- SHA1
  
  642e2308009118066f97a3a3476b09a0dfbae67f
- SHA256
  
  2a77ece7bce244a5ec8219172724c57f626af2db5edd394f4d77f001430199cc
- SHA512
  
  ae1200b623566bb1e91021d6fb6d841ba9db66df056fe4796bc5cac9e7fc3c36b610bd0ddf9a086dac3ccf8027a2c610958b01e4254c21fbd94d03be4eb8201b
- SSDEEP
  
  1536:Qch5XCZtRShOc1mE6m3nnHPaDFgypAmHYWhG2LdS5DUHRbPa9b6i+sIk:Q4fBmEDHPaDFgypAmHfhrdS5DSCopsIk
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence