82d5db638e5b8a5697746c95a2460fdeb19f1f62d416d7a420d8048359fe84d5 | Triage

Sharing

General

Target

e789b4a888989e17920f84e292e2f910N.exe
Size

112KB
Sample

240817-np33sstbkc
MD5

e789b4a888989e17920f84e292e2f910
SHA1

a5313a26d7c83ee632b60686165efe88a4b9809b
SHA256

82d5db638e5b8a5697746c95a2460fdeb19f1f62d416d7a420d8048359fe84d5
SHA512

eb3c6c698dcc278b5b5d65e239eaec413a1be183cf360c8274e92e9d25842b7e04d4c53daf4c76d4e253451a0b7396cabd135961ebaee6b9143cbd27984791df
SSDEEP

1536:BP7ls0KSr0EnbCocw9RN0FmSqZpAxQKMGfyJ+hrUQVoMdUT+irjVVKm1ieuRzKwZ:BD205nQocFhqZTGq+hr1RhAo+ie0TZ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e789b4a888989e17920f84e292e2f910N.exe
- Size
  
  112KB
- MD5
  
  e789b4a888989e17920f84e292e2f910
- SHA1
  
  a5313a26d7c83ee632b60686165efe88a4b9809b
- SHA256
  
  82d5db638e5b8a5697746c95a2460fdeb19f1f62d416d7a420d8048359fe84d5
- SHA512
  
  eb3c6c698dcc278b5b5d65e239eaec413a1be183cf360c8274e92e9d25842b7e04d4c53daf4c76d4e253451a0b7396cabd135961ebaee6b9143cbd27984791df
- SSDEEP
  
  1536:BP7ls0KSr0EnbCocw9RN0FmSqZpAxQKMGfyJ+hrUQVoMdUT+irjVVKm1ieuRzKwZ:BD205nQocFhqZTGq+hr1RhAo+ie0TZ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence