5bb69140d4d7cbde0de22781440bcf7e44d12432d2629dea3017337c93e9936c | Triage

Sharing

General

Target

63d1fb02c7190c94a2122dce3627a160N.exe
Size

108KB
Sample

240818-ptb1jswgkp
MD5

63d1fb02c7190c94a2122dce3627a160
SHA1

26f922b67fc294377f942bc199bb5bf1877c6957
SHA256

5bb69140d4d7cbde0de22781440bcf7e44d12432d2629dea3017337c93e9936c
SHA512

6ce23c3caacf0ef0acb90bf9867a55de46eef5332eff1c309a6f8f4a32f09f0e5501c6b456588aaa7c6183d8adf39d48f6c8d1c242c6f94ef6dcb8bb31422927
SSDEEP

1536:dYsISV65CPdflC7RSm58AU7ucoElFbImFcFmKcUsvKwF:dYrSVGklC7R/doImFcFmKcUsvKwF

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  63d1fb02c7190c94a2122dce3627a160N.exe
- Size
  
  108KB
- MD5
  
  63d1fb02c7190c94a2122dce3627a160
- SHA1
  
  26f922b67fc294377f942bc199bb5bf1877c6957
- SHA256
  
  5bb69140d4d7cbde0de22781440bcf7e44d12432d2629dea3017337c93e9936c
- SHA512
  
  6ce23c3caacf0ef0acb90bf9867a55de46eef5332eff1c309a6f8f4a32f09f0e5501c6b456588aaa7c6183d8adf39d48f6c8d1c242c6f94ef6dcb8bb31422927
- SSDEEP
  
  1536:dYsISV65CPdflC7RSm58AU7ucoElFbImFcFmKcUsvKwF:dYrSVGklC7R/doImFcFmKcUsvKwF
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence