33f0e2e35a1d505742d5aa6e975f99ea2c05737208af762cbce269806f17aa8a | Triage

Sharing

General

Target

539fea490774ed5cffb9f22f04903f40N.exe
Size

72KB
Sample

240818-bqdhbazglj
MD5

539fea490774ed5cffb9f22f04903f40
SHA1

639169c05c47e85bb9c12a4b5211434cfc6c0478
SHA256

33f0e2e35a1d505742d5aa6e975f99ea2c05737208af762cbce269806f17aa8a
SHA512

d13be9b1f7aebc61e4f35e18b8df0cc440d549c49af1583d26d5ad8869fd4e302fc8f528cf5e7b54eb70f3830b32d9107fa79e9783e99518cdfa6d2ef52fe5f3
SSDEEP

1536:w+PUlN+AdjkWzzDEafNbtXHv+XB2V02L3G6+lWCWQ+:HPUKAV5zzDEWtgB2VNW6+bWQ+

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  539fea490774ed5cffb9f22f04903f40N.exe
- Size
  
  72KB
- MD5
  
  539fea490774ed5cffb9f22f04903f40
- SHA1
  
  639169c05c47e85bb9c12a4b5211434cfc6c0478
- SHA256
  
  33f0e2e35a1d505742d5aa6e975f99ea2c05737208af762cbce269806f17aa8a
- SHA512
  
  d13be9b1f7aebc61e4f35e18b8df0cc440d549c49af1583d26d5ad8869fd4e302fc8f528cf5e7b54eb70f3830b32d9107fa79e9783e99518cdfa6d2ef52fe5f3
- SSDEEP
  
  1536:w+PUlN+AdjkWzzDEafNbtXHv+XB2V02L3G6+lWCWQ+:HPUKAV5zzDEWtgB2VNW6+bWQ+
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence