e92c12525531b2716e88bee37bbfca5439abcc751facd554d49e6ca8452de000 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1b2dc539262777aec27743034f4c380N.exe
Size

148KB
Sample

240819-aagpcssdpe
MD5

c1b2dc539262777aec27743034f4c380
SHA1

b1d501c7729a2a7da85a1c67599b5cb95055c1f5
SHA256

e92c12525531b2716e88bee37bbfca5439abcc751facd554d49e6ca8452de000
SHA512

0e083ce6fab60df5be662e0fa03450359396efebbfdbb963a2a32ace9a9e99c57541eb090e9b445eb7b46d5dac78251805498f755b6f62742a5feda1d4c0cb9d
SSDEEP

3072:USnBCNo8v4V+yY5OdzOdjKtlDoNQQ9wlHOdj+UCRQKOdj+U:USnBCN8V+yKOdzOdkOdezOd

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c1b2dc539262777aec27743034f4c380N.exe
- Size
  
  148KB
- MD5
  
  c1b2dc539262777aec27743034f4c380
- SHA1
  
  b1d501c7729a2a7da85a1c67599b5cb95055c1f5
- SHA256
  
  e92c12525531b2716e88bee37bbfca5439abcc751facd554d49e6ca8452de000
- SHA512
  
  0e083ce6fab60df5be662e0fa03450359396efebbfdbb963a2a32ace9a9e99c57541eb090e9b445eb7b46d5dac78251805498f755b6f62742a5feda1d4c0cb9d
- SSDEEP
  
  3072:USnBCNo8v4V+yY5OdzOdjKtlDoNQQ9wlHOdj+UCRQKOdj+U:USnBCN8V+yKOdzOdkOdezOd
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence