5decd24f15b4608e2e1542e415e29d200a2b66d885cdd25d4113de559794f10a | Triage

Sharing

General

Target

acba8c979df59b4a6bcd195fafe7fe50N.exe
Size

128KB
Sample

240821-27jzjazbrq
MD5

acba8c979df59b4a6bcd195fafe7fe50
SHA1

53aa7aa70f3a4bdc6b266f32c2961181c92d54fe
SHA256

5decd24f15b4608e2e1542e415e29d200a2b66d885cdd25d4113de559794f10a
SHA512

27a396e3d8c881577fdd916c13dd397d78d65ef936c918996351c388f73dea8d29a5b1ec2ee16288c0680df1243d7afee59a0b1ad2110dae816c31e1319790ee
SSDEEP

3072:iabOWN+nbmdyJMOfVo/kDd1AZoUBW3FJeRuaWNXmgu+tB:iq+nbCyJMOfMWdWZHEFJ7aWN1B

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  acba8c979df59b4a6bcd195fafe7fe50N.exe
- Size
  
  128KB
- MD5
  
  acba8c979df59b4a6bcd195fafe7fe50
- SHA1
  
  53aa7aa70f3a4bdc6b266f32c2961181c92d54fe
- SHA256
  
  5decd24f15b4608e2e1542e415e29d200a2b66d885cdd25d4113de559794f10a
- SHA512
  
  27a396e3d8c881577fdd916c13dd397d78d65ef936c918996351c388f73dea8d29a5b1ec2ee16288c0680df1243d7afee59a0b1ad2110dae816c31e1319790ee
- SSDEEP
  
  3072:iabOWN+nbmdyJMOfVo/kDd1AZoUBW3FJeRuaWNXmgu+tB:iq+nbCyJMOfMWdWZHEFJ7aWN1B
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence