a758ea195cb698f3aecbdc5cb84076db1088ccb8b682f93c713b90f468d55f7a | Triage

Sharing

General

Target

e7164800bfc92aff3f7a4426778cfa40N.exe
Size

75KB
Sample

240821-vn4fha1ajd
MD5

e7164800bfc92aff3f7a4426778cfa40
SHA1

76b1e971c3c1a434e7a04352d51e44da63e9a29c
SHA256

a758ea195cb698f3aecbdc5cb84076db1088ccb8b682f93c713b90f468d55f7a
SHA512

d92761b5314be3acbaffecb433ad41b115cb1b2e7fda7c0e01c57b288bc6b8e4a375036c8a4e7cc1efa26fb508d46b291b3bb5e5901a84c04a8af78a1927cdc1
SSDEEP

1536:n8dcymlwLWMMr04hO142pVvgnRvtEvkGbRjO53q52IrFH:2m+W9rru42pVNvkGbRjg3qv

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e7164800bfc92aff3f7a4426778cfa40N.exe
- Size
  
  75KB
- MD5
  
  e7164800bfc92aff3f7a4426778cfa40
- SHA1
  
  76b1e971c3c1a434e7a04352d51e44da63e9a29c
- SHA256
  
  a758ea195cb698f3aecbdc5cb84076db1088ccb8b682f93c713b90f468d55f7a
- SHA512
  
  d92761b5314be3acbaffecb433ad41b115cb1b2e7fda7c0e01c57b288bc6b8e4a375036c8a4e7cc1efa26fb508d46b291b3bb5e5901a84c04a8af78a1927cdc1
- SSDEEP
  
  1536:n8dcymlwLWMMr04hO142pVvgnRvtEvkGbRjO53q52IrFH:2m+W9rru42pVNvkGbRjg3qv
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence