9c62be97e4a541677eb80306dbbf734bd03f4bfd420c95c55150b36b184b4b22 | Triage

Sharing

General

Target

7ad9fb13cdfca56846ca16952ad2fc00N.exe
Size

704KB
Sample

240818-n5cwjssgnc
MD5

7ad9fb13cdfca56846ca16952ad2fc00
SHA1

8e4d2fdbf42d016426a8f29dc5d6a276807e4b80
SHA256

9c62be97e4a541677eb80306dbbf734bd03f4bfd420c95c55150b36b184b4b22
SHA512

3fdd6b6fbd2a59dc2c9e9776dddd4abdc64e147fb1766c90133d215be1d225a71867e9a0deee3ad8128e5f0fb614d8b78e631aec22594580f0d8cca5f15cb1af
SSDEEP

1536:NK/7XUjmrtcb5ymlefGUiaj+TjalzVFOH7RYSw1mir8CAjXoiDEuGg0opGCR9C:cZvCe+kjxz7w7RYSa9rR85DEn5k7rC

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7ad9fb13cdfca56846ca16952ad2fc00N.exe
- Size
  
  704KB
- MD5
  
  7ad9fb13cdfca56846ca16952ad2fc00
- SHA1
  
  8e4d2fdbf42d016426a8f29dc5d6a276807e4b80
- SHA256
  
  9c62be97e4a541677eb80306dbbf734bd03f4bfd420c95c55150b36b184b4b22
- SHA512
  
  3fdd6b6fbd2a59dc2c9e9776dddd4abdc64e147fb1766c90133d215be1d225a71867e9a0deee3ad8128e5f0fb614d8b78e631aec22594580f0d8cca5f15cb1af
- SSDEEP
  
  1536:NK/7XUjmrtcb5ymlefGUiaj+TjalzVFOH7RYSw1mir8CAjXoiDEuGg0opGCR9C:cZvCe+kjxz7w7RYSa9rR85DEn5k7rC
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence