5b7b6118a1edb8ed1224c78ccc9b72f2fd1339f8c23c8dd57dbe75afbc9d121b | Triage

Sharing

General

Target

02f7f2187e91b678de2fd0e07c300c20N.exe
Size

93KB
Sample

240818-jpeyratcma
MD5

02f7f2187e91b678de2fd0e07c300c20
SHA1

02366f8dcdfe9d5e4f888ef00464431e30c949c0
SHA256

5b7b6118a1edb8ed1224c78ccc9b72f2fd1339f8c23c8dd57dbe75afbc9d121b
SHA512

c1962ddd8bdf7ea01ef5430c9bdfc5d2e8cfae12ab8640f6b78a10f8d2370e5d34d2bcbeebc8060d4598272bd0898e6273610f8ce85891dde73b38949edb5e01
SSDEEP

1536:Vxn2ViyukwNhTkx5nnNLK+jUPRdFFssRQQdRkRLJzeLD9N0iQGRNQR8RyV+32rR:X2aAx5nRJUPRdFBeOSJdEN0s4WE+3K

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  02f7f2187e91b678de2fd0e07c300c20N.exe
- Size
  
  93KB
- MD5
  
  02f7f2187e91b678de2fd0e07c300c20
- SHA1
  
  02366f8dcdfe9d5e4f888ef00464431e30c949c0
- SHA256
  
  5b7b6118a1edb8ed1224c78ccc9b72f2fd1339f8c23c8dd57dbe75afbc9d121b
- SHA512
  
  c1962ddd8bdf7ea01ef5430c9bdfc5d2e8cfae12ab8640f6b78a10f8d2370e5d34d2bcbeebc8060d4598272bd0898e6273610f8ce85891dde73b38949edb5e01
- SSDEEP
  
  1536:Vxn2ViyukwNhTkx5nnNLK+jUPRdFFssRQQdRkRLJzeLD9N0iQGRNQR8RyV+32rR:X2aAx5nRJUPRdFBeOSJdEN0s4WE+3K
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence