b1cbda0dd678037a416e9d1bf1e79b4a0bda0838244f8cecddb4bb19da9e767d | Triage

Sharing

General

Target

7e20482ad41d532c6665a87832d4dd00N.exe
Size

96KB
Sample

240817-tnr7ssxdqm
MD5

7e20482ad41d532c6665a87832d4dd00
SHA1

5243bbe32c4861d8f24f7878794c403ea090a9eb
SHA256

b1cbda0dd678037a416e9d1bf1e79b4a0bda0838244f8cecddb4bb19da9e767d
SHA512

498a659dfe61467904f2fb11af264650a6bd3f355ce42a6c6f07abc0819334c94e696902abacaa70970846e63f61918b7421f3291f157688008a93dcf69e4f0b
SSDEEP

1536:XKlM4YN31olw7+Gwqzl09vQuP/xf5us9BLB5/DyPduV9jojTIvjr:XKo+lU+QlmvZPpf5p73/Dkd69jc0v

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7e20482ad41d532c6665a87832d4dd00N.exe
- Size
  
  96KB
- MD5
  
  7e20482ad41d532c6665a87832d4dd00
- SHA1
  
  5243bbe32c4861d8f24f7878794c403ea090a9eb
- SHA256
  
  b1cbda0dd678037a416e9d1bf1e79b4a0bda0838244f8cecddb4bb19da9e767d
- SHA512
  
  498a659dfe61467904f2fb11af264650a6bd3f355ce42a6c6f07abc0819334c94e696902abacaa70970846e63f61918b7421f3291f157688008a93dcf69e4f0b
- SSDEEP
  
  1536:XKlM4YN31olw7+Gwqzl09vQuP/xf5us9BLB5/DyPduV9jojTIvjr:XKo+lU+QlmvZPpf5p73/Dkd69jc0v
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence