f57d34822b953430876b977883d969bf91cdb12e92f94d2f892434b91e8e07e3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

823fa5e739f802d7080948c66a584a90N.exe
Size

90KB
Sample

240819-v2cjya1alr
MD5

823fa5e739f802d7080948c66a584a90
SHA1

19ff0b2f8969059cfd849890a03ffb881ef9dc7f
SHA256

f57d34822b953430876b977883d969bf91cdb12e92f94d2f892434b91e8e07e3
SHA512

2ab7f2ffb9072d7080cf18ccd0f77ed390953109f8501a43fa4bf79297559414f5b669487fbfb69048d036b472e6d50056bbc7ccd674d0adf3ca934f2cfe2ce7
SSDEEP

1536:PvYXEm1PuCLl6HkTAXbWRsSH0B2ZdY+yxpE8P6QcfaKBGFu/Ub0VkVNK:PvFUwtb32ZhopE8P61iKBGFu/Ub0+NK

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  823fa5e739f802d7080948c66a584a90N.exe
- Size
  
  90KB
- MD5
  
  823fa5e739f802d7080948c66a584a90
- SHA1
  
  19ff0b2f8969059cfd849890a03ffb881ef9dc7f
- SHA256
  
  f57d34822b953430876b977883d969bf91cdb12e92f94d2f892434b91e8e07e3
- SHA512
  
  2ab7f2ffb9072d7080cf18ccd0f77ed390953109f8501a43fa4bf79297559414f5b669487fbfb69048d036b472e6d50056bbc7ccd674d0adf3ca934f2cfe2ce7
- SSDEEP
  
  1536:PvYXEm1PuCLl6HkTAXbWRsSH0B2ZdY+yxpE8P6QcfaKBGFu/Ub0VkVNK:PvFUwtb32ZhopE8P61iKBGFu/Ub0+NK
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence