78b7620e811778e1fbb34cf6b617181dedfcb3f186ae955b88b73d818ca13546 | Triage

Sharing

General

Target

e3cd772fbdf28e09656b463d0d9bdaf0N.exe
Size

163KB
Sample

240821-vehgnstbrm
MD5

e3cd772fbdf28e09656b463d0d9bdaf0
SHA1

f4fa493f8f487a5e278b77ec702a1a95c8e6bc05
SHA256

78b7620e811778e1fbb34cf6b617181dedfcb3f186ae955b88b73d818ca13546
SHA512

f108892b8c1d2d45d753ac439e1ff3b7f436d291a928bb9a1f79723cc77bef558788c9d413df72a8bb97df58f2b7f48ec24a3710c8d3519095e32b63727e7148
SSDEEP

1536:Pjg9IKZffZhFgq8YiJQU07+lProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:7gDtfZfp8VQB+ltOrWKDBr+yJb

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e3cd772fbdf28e09656b463d0d9bdaf0N.exe
- Size
  
  163KB
- MD5
  
  e3cd772fbdf28e09656b463d0d9bdaf0
- SHA1
  
  f4fa493f8f487a5e278b77ec702a1a95c8e6bc05
- SHA256
  
  78b7620e811778e1fbb34cf6b617181dedfcb3f186ae955b88b73d818ca13546
- SHA512
  
  f108892b8c1d2d45d753ac439e1ff3b7f436d291a928bb9a1f79723cc77bef558788c9d413df72a8bb97df58f2b7f48ec24a3710c8d3519095e32b63727e7148
- SSDEEP
  
  1536:Pjg9IKZffZhFgq8YiJQU07+lProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:7gDtfZfp8VQB+ltOrWKDBr+yJb
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence