675772a7baf58a738a56314a42f1fa9d2beea2363e6d6fc091fa721c69cbc1e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e5257120d8c836c519c94c626ce5690N.exe
Size

93KB
Sample

240819-ecw92swejk
MD5

8e5257120d8c836c519c94c626ce5690
SHA1

cfa91f089d1f8dc1b9c963201a4742070b45c7bd
SHA256

675772a7baf58a738a56314a42f1fa9d2beea2363e6d6fc091fa721c69cbc1e8
SHA512

fb46f1de3f62cbc75388d3143d446f7406ef0de636cad102f9cb5b50877562a5db4de97245248abf5bf07c457fddf8d1cd5ea58f41357f57d9dcad33dabd69b1
SSDEEP

1536:5YXLzA4uiB+tHaCG4AXoy2v8+mmU6FfmWsdOLsRQyRkRLJzeLD9N0iQGRNQR8Ryn:5aA2gNAYn8+RUU3sdOAeySJdEN0s4WEd

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8e5257120d8c836c519c94c626ce5690N.exe
- Size
  
  93KB
- MD5
  
  8e5257120d8c836c519c94c626ce5690
- SHA1
  
  cfa91f089d1f8dc1b9c963201a4742070b45c7bd
- SHA256
  
  675772a7baf58a738a56314a42f1fa9d2beea2363e6d6fc091fa721c69cbc1e8
- SHA512
  
  fb46f1de3f62cbc75388d3143d446f7406ef0de636cad102f9cb5b50877562a5db4de97245248abf5bf07c457fddf8d1cd5ea58f41357f57d9dcad33dabd69b1
- SSDEEP
  
  1536:5YXLzA4uiB+tHaCG4AXoy2v8+mmU6FfmWsdOLsRQyRkRLJzeLD9N0iQGRNQR8Ryn:5aA2gNAYn8+RUU3sdOAeySJdEN0s4WEd
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence