21019fdcc42320a030018559771b09c01a80ee8cd37400a7d7e8208984ddca9c | Triage

Sharing

General

Target

7cc81bc03cde698ed8351d4aceb96780N.exe
Size

59KB
Sample

240821-k3l5nazere
MD5

7cc81bc03cde698ed8351d4aceb96780
SHA1

28d149b735a8cc2acf395828d85affc16bb6a57c
SHA256

21019fdcc42320a030018559771b09c01a80ee8cd37400a7d7e8208984ddca9c
SHA512

c6a6ab5a249de6f3bde6ced4e86df13ed04a21a8b6e9c51cb73360eefe1d74cfb71c4e7800fc9b3bbcd84d9c2c3884d8f05af0f26c6f65c5d0272d170a71b024
SSDEEP

768:Ba/Yw0ARRbCxAY4Gqq1P6MH0R3iSXlnIEAoajo9KYZ/1H5Xz5nf1fZMEBFELvkVs:ByYyyAZ7YlEignIJafp9NCyVs

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7cc81bc03cde698ed8351d4aceb96780N.exe
- Size
  
  59KB
- MD5
  
  7cc81bc03cde698ed8351d4aceb96780
- SHA1
  
  28d149b735a8cc2acf395828d85affc16bb6a57c
- SHA256
  
  21019fdcc42320a030018559771b09c01a80ee8cd37400a7d7e8208984ddca9c
- SHA512
  
  c6a6ab5a249de6f3bde6ced4e86df13ed04a21a8b6e9c51cb73360eefe1d74cfb71c4e7800fc9b3bbcd84d9c2c3884d8f05af0f26c6f65c5d0272d170a71b024
- SSDEEP
  
  768:Ba/Yw0ARRbCxAY4Gqq1P6MH0R3iSXlnIEAoajo9KYZ/1H5Xz5nf1fZMEBFELvkVs:ByYyyAZ7YlEignIJafp9NCyVs
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence