0e2433d3e24867cf028cd9d8e4e0d99265648c528bbec925b1c7e537122531b7 | Triage

Sharing

General

Target

b47acdc768ed63a68e3a456ea8e04ca0N.exe
Size

79KB
Sample

240818-ct5awazfqd
MD5

b47acdc768ed63a68e3a456ea8e04ca0
SHA1

4e4218d00a2d9f9e08a74c4fc45d010e4cb08941
SHA256

0e2433d3e24867cf028cd9d8e4e0d99265648c528bbec925b1c7e537122531b7
SHA512

9fe075f7ac7cfec2335410c12a42bc13f3adff253862d780ecac1ac33739931d319f6540c84b16cac9ae8376710bdfceb2c71475ba581fcd4889c79e6f81097a
SSDEEP

1536:g9QGScf4xx4DleEgflKV+JtTZPVlZrI1jHJZrR:ewOxBVC3dlu1jHJ9R

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b47acdc768ed63a68e3a456ea8e04ca0N.exe
- Size
  
  79KB
- MD5
  
  b47acdc768ed63a68e3a456ea8e04ca0
- SHA1
  
  4e4218d00a2d9f9e08a74c4fc45d010e4cb08941
- SHA256
  
  0e2433d3e24867cf028cd9d8e4e0d99265648c528bbec925b1c7e537122531b7
- SHA512
  
  9fe075f7ac7cfec2335410c12a42bc13f3adff253862d780ecac1ac33739931d319f6540c84b16cac9ae8376710bdfceb2c71475ba581fcd4889c79e6f81097a
- SSDEEP
  
  1536:g9QGScf4xx4DleEgflKV+JtTZPVlZrI1jHJZrR:ewOxBVC3dlu1jHJ9R
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence