78e36f5149071604dfe773f71f6ffc634e9d7222941eeadb9d624c5be727a29a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e509ffc9fd599d5f7f17339e1b1790b0N.exe
Size

89KB
Sample

240818-qmsv6axhln
MD5

e509ffc9fd599d5f7f17339e1b1790b0
SHA1

c0c05c3d901f55db7bce8770a5fcaf3d47df511f
SHA256

78e36f5149071604dfe773f71f6ffc634e9d7222941eeadb9d624c5be727a29a
SHA512

8bd89bfd37ca6a3d2db2fc443b4ae763b89c0976fe626bdfda9d150656fe351b853f2128d85be353c9550b5308384ba64a31e5daf6ac4f8a0e61f313d52d869b
SSDEEP

1536:HnT3F6eHKI9V8LqiAAKtvkwlmzoJdoIYZE+TRQbBD68a+VMKKTRVGFtUhQfR1WRw:H3KO6GXl9oIYleEr4MKy3G7UEqMM6

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e509ffc9fd599d5f7f17339e1b1790b0N.exe
- Size
  
  89KB
- MD5
  
  e509ffc9fd599d5f7f17339e1b1790b0
- SHA1
  
  c0c05c3d901f55db7bce8770a5fcaf3d47df511f
- SHA256
  
  78e36f5149071604dfe773f71f6ffc634e9d7222941eeadb9d624c5be727a29a
- SHA512
  
  8bd89bfd37ca6a3d2db2fc443b4ae763b89c0976fe626bdfda9d150656fe351b853f2128d85be353c9550b5308384ba64a31e5daf6ac4f8a0e61f313d52d869b
- SSDEEP
  
  1536:HnT3F6eHKI9V8LqiAAKtvkwlmzoJdoIYZE+TRQbBD68a+VMKKTRVGFtUhQfR1WRw:H3KO6GXl9oIYleEr4MKy3G7UEqMM6
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence