bd71e04c4f60cc584b69d3154bd05a9a20ba2d0a78c2f0e004e12600cc3e2169 | Triage

Sharing

General

Target

4ef341a4875bfc3fd6331c401d2f1900N.exe
Size

89KB
Sample

240819-p74bysvfpc
MD5

4ef341a4875bfc3fd6331c401d2f1900
SHA1

39d2e88134a1367fc3470a5bd394b04c6fc76817
SHA256

bd71e04c4f60cc584b69d3154bd05a9a20ba2d0a78c2f0e004e12600cc3e2169
SHA512

13788b7c5dcc05ef8b07de5ae5eaf86ee3b9fe150b17ba885a935172f5dff2fb38e525bd1924d57e3e9e1cde2e66cb30fbaa831392c9babcda76113d7017838f
SSDEEP

1536:kjn5ley7DBus4xBPMfBFwNMGNAbmsCIK282c8CPGCECa9bC7e3iaqWpOBMD:Gx7DgLxliGSbmhD28Qxnd9GMHqW/

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  4ef341a4875bfc3fd6331c401d2f1900N.exe
- Size
  
  89KB
- MD5
  
  4ef341a4875bfc3fd6331c401d2f1900
- SHA1
  
  39d2e88134a1367fc3470a5bd394b04c6fc76817
- SHA256
  
  bd71e04c4f60cc584b69d3154bd05a9a20ba2d0a78c2f0e004e12600cc3e2169
- SHA512
  
  13788b7c5dcc05ef8b07de5ae5eaf86ee3b9fe150b17ba885a935172f5dff2fb38e525bd1924d57e3e9e1cde2e66cb30fbaa831392c9babcda76113d7017838f
- SSDEEP
  
  1536:kjn5ley7DBus4xBPMfBFwNMGNAbmsCIK282c8CPGCECa9bC7e3iaqWpOBMD:Gx7DgLxliGSbmhD28Qxnd9GMHqW/
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence