9bf060851e7b6e76975fdc681194f201e5995b98bb639c50523a01fdf77fdedb | Triage

Sharing

General

Target

ef47db9bcf65935ccd52fac41b062c20N.exe
Size

95KB
Sample

240817-k97pya1eqq
MD5

ef47db9bcf65935ccd52fac41b062c20
SHA1

a5c1d4e1999f06a810ce2ce332b8a5d68f06b04c
SHA256

9bf060851e7b6e76975fdc681194f201e5995b98bb639c50523a01fdf77fdedb
SHA512

e358fcb2aac1a7755f78aa52285319cb6443e3feb945e5da7127cd8832e5c808dab4a5bfcc48bdd2174745aca7c1e6305ce6def3e6c1aec6124c3a503ccc62d0
SSDEEP

1536:Hlqls0GgUyj5JxdA4Oj3W2Fsdq4FYG+sdguxnSngBNpT/mzNnxPAxEAz0+/8omC3:HQC/yj5JO3MnYG+Hu54Fx4xE8EomCP1Z

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ef47db9bcf65935ccd52fac41b062c20N.exe
- Size
  
  95KB
- MD5
  
  ef47db9bcf65935ccd52fac41b062c20
- SHA1
  
  a5c1d4e1999f06a810ce2ce332b8a5d68f06b04c
- SHA256
  
  9bf060851e7b6e76975fdc681194f201e5995b98bb639c50523a01fdf77fdedb
- SHA512
  
  e358fcb2aac1a7755f78aa52285319cb6443e3feb945e5da7127cd8832e5c808dab4a5bfcc48bdd2174745aca7c1e6305ce6def3e6c1aec6124c3a503ccc62d0
- SSDEEP
  
  1536:Hlqls0GgUyj5JxdA4Oj3W2Fsdq4FYG+sdguxnSngBNpT/mzNnxPAxEAz0+/8omC3:HQC/yj5JO3MnYG+Hu54Fx4xE8EomCP1Z
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence