729cf919b2b2003b0e31eb4180140f0a6a9804477fd6a0cc85930546f5dd78cf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4de6648ec741655d403ad9826f19c60N.exe
Size

96KB
Sample

240818-s55zjs1bmf
MD5

b4de6648ec741655d403ad9826f19c60
SHA1

963123e25ba2ac15e6319c0159253ca9f7e2bf3c
SHA256

729cf919b2b2003b0e31eb4180140f0a6a9804477fd6a0cc85930546f5dd78cf
SHA512

b37392f3243187d470ef28bdfea006a66cfaa844595bc4ba731c5a3a7d700168142548e354de3a2185406027c3bc34c2bd9089e3aa6a990a6c4883bcb4a8e815
SSDEEP

1536:ivmFF+AgjaKCDQT32+PBRj2Lb7sBMu/HCmiDcg3MZRP3cEW3AE:iNjaKyQT32+ZRAna6miEo

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b4de6648ec741655d403ad9826f19c60N.exe
- Size
  
  96KB
- MD5
  
  b4de6648ec741655d403ad9826f19c60
- SHA1
  
  963123e25ba2ac15e6319c0159253ca9f7e2bf3c
- SHA256
  
  729cf919b2b2003b0e31eb4180140f0a6a9804477fd6a0cc85930546f5dd78cf
- SHA512
  
  b37392f3243187d470ef28bdfea006a66cfaa844595bc4ba731c5a3a7d700168142548e354de3a2185406027c3bc34c2bd9089e3aa6a990a6c4883bcb4a8e815
- SSDEEP
  
  1536:ivmFF+AgjaKCDQT32+PBRj2Lb7sBMu/HCmiDcg3MZRP3cEW3AE:iNjaKyQT32+ZRAna6miEo
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence