e27f9c16d7749cdc53fb99220cde1797535ccbd5bd6a0763a9680a840128939a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da5098b7e8e2f8b55d1455cfa0f93f30N.exe
Size

94KB
Sample

240818-jplfjatcme
MD5

da5098b7e8e2f8b55d1455cfa0f93f30
SHA1

a5392070bf25a84eae587868cb152394f6983f96
SHA256

e27f9c16d7749cdc53fb99220cde1797535ccbd5bd6a0763a9680a840128939a
SHA512

74a4f71d31939ce949b1188d8559f4b8bd45add4d929923346f398135263246298feb2657f2c76234a67181a2d1a9358de6707e5e764c2765ef09f1b9b9d21ea
SSDEEP

1536:AIgX5NY01emnDLq5nzJSmZjz2LHNYMQ262AjCsQ2PCZZrqOlNfVSLUKkJr4:AIgX8+AQHKMQH2qC7ZQOlzSLUK64

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  da5098b7e8e2f8b55d1455cfa0f93f30N.exe
- Size
  
  94KB
- MD5
  
  da5098b7e8e2f8b55d1455cfa0f93f30
- SHA1
  
  a5392070bf25a84eae587868cb152394f6983f96
- SHA256
  
  e27f9c16d7749cdc53fb99220cde1797535ccbd5bd6a0763a9680a840128939a
- SHA512
  
  74a4f71d31939ce949b1188d8559f4b8bd45add4d929923346f398135263246298feb2657f2c76234a67181a2d1a9358de6707e5e764c2765ef09f1b9b9d21ea
- SSDEEP
  
  1536:AIgX5NY01emnDLq5nzJSmZjz2LHNYMQ262AjCsQ2PCZZrqOlNfVSLUKkJr4:AIgX8+AQHKMQH2qC7ZQOlzSLUK64
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence