972cb56a6d2f367a2a8eb932ca647bbe0ef3a1e4e5ab6a653e32f7d3f9ccbffd | Triage

Sharing

General

Target

76e2f84dbfd1a396dc86026907035570N.exe
Size

95KB
Sample

240817-xcp5vatdmm
MD5

76e2f84dbfd1a396dc86026907035570
SHA1

2f0abbf7ab0ea9ffb63a8780c48c1c9074f9e769
SHA256

972cb56a6d2f367a2a8eb932ca647bbe0ef3a1e4e5ab6a653e32f7d3f9ccbffd
SHA512

60ed6e96b7070f8e606d96599c55d998ab7ba524f069b9267dd16a3019d0e2f1fa8177c2f1da53f7585a78a33183ea29e60a70aac78cceabac0907e25c48f99a
SSDEEP

1536:sZXFZzXta8JDYIEEAEvs2YjU2IDqaE4jSNZEFRQr7RVRoRch1dROrwpOudRirVtB:mX3zXta8JUIL02YjnIDZEpZWePTWM1dK

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  76e2f84dbfd1a396dc86026907035570N.exe
- Size
  
  95KB
- MD5
  
  76e2f84dbfd1a396dc86026907035570
- SHA1
  
  2f0abbf7ab0ea9ffb63a8780c48c1c9074f9e769
- SHA256
  
  972cb56a6d2f367a2a8eb932ca647bbe0ef3a1e4e5ab6a653e32f7d3f9ccbffd
- SHA512
  
  60ed6e96b7070f8e606d96599c55d998ab7ba524f069b9267dd16a3019d0e2f1fa8177c2f1da53f7585a78a33183ea29e60a70aac78cceabac0907e25c48f99a
- SSDEEP
  
  1536:sZXFZzXta8JDYIEEAEvs2YjU2IDqaE4jSNZEFRQr7RVRoRch1dROrwpOudRirVtB:mX3zXta8JUIL02YjnIDZEpZWePTWM1dK
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence