b8f16c11fadd208f5687c28a54afb516c2f42704d7ee7f94440ff670f61e49a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e8e96df6a21c2a3b5b48d6cd153214a0N.exe
Size

85KB
Sample

240817-lc1e2a1gjl
MD5

e8e96df6a21c2a3b5b48d6cd153214a0
SHA1

344b48de4437b3b5717756a7d360b0a8610d3586
SHA256

b8f16c11fadd208f5687c28a54afb516c2f42704d7ee7f94440ff670f61e49a5
SHA512

a0444954603e0d0dc5acdf983de9ede7ca524af61ee4779484420aa1f0d525c637171325268387cb5a8ab2683d1e09091125614280d7b68dc805c79c43458099
SSDEEP

1536:twZHNOcPbKVPCRe2LHpMQ262AjCsQ2PCZZrqOlNfVSLUK+:twhNjjHpMQH2qC7ZQOlzSLUK+

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e8e96df6a21c2a3b5b48d6cd153214a0N.exe
- Size
  
  85KB
- MD5
  
  e8e96df6a21c2a3b5b48d6cd153214a0
- SHA1
  
  344b48de4437b3b5717756a7d360b0a8610d3586
- SHA256
  
  b8f16c11fadd208f5687c28a54afb516c2f42704d7ee7f94440ff670f61e49a5
- SHA512
  
  a0444954603e0d0dc5acdf983de9ede7ca524af61ee4779484420aa1f0d525c637171325268387cb5a8ab2683d1e09091125614280d7b68dc805c79c43458099
- SSDEEP
  
  1536:twZHNOcPbKVPCRe2LHpMQ262AjCsQ2PCZZrqOlNfVSLUK+:twhNjjHpMQH2qC7ZQOlzSLUK+
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence