068eee36ccbc3afceb010baf244ec5198e465db3a1ce6372f3e3e1bbd4a871f7 | Triage

Sharing

General

Target

e6e3f6b64624bbfc4b6f8dd1ae79c080N.exe
Size

79KB
Sample

240822-3pwfaawemm
MD5

e6e3f6b64624bbfc4b6f8dd1ae79c080
SHA1

23d98610b3576d23c203953e283272d5fcb8a9a3
SHA256

068eee36ccbc3afceb010baf244ec5198e465db3a1ce6372f3e3e1bbd4a871f7
SHA512

aadcff548943e303ceb81d6f05084e0027f5f3edc9cebfe48cd1c6b2d2f5ef7a45c1b27a5d315bae40495d28a713546723e905e1f4c04a1119e51144c20dd11f
SSDEEP

1536:x0vySU8sleOdwWIW+hV4dyjlUWeboS1hp1YiUELiFkSIgiItKq9v6DK:WvTUPcPWIW+hAOBq1YiUELixtBtKq9vV

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e6e3f6b64624bbfc4b6f8dd1ae79c080N.exe
- Size
  
  79KB
- MD5
  
  e6e3f6b64624bbfc4b6f8dd1ae79c080
- SHA1
  
  23d98610b3576d23c203953e283272d5fcb8a9a3
- SHA256
  
  068eee36ccbc3afceb010baf244ec5198e465db3a1ce6372f3e3e1bbd4a871f7
- SHA512
  
  aadcff548943e303ceb81d6f05084e0027f5f3edc9cebfe48cd1c6b2d2f5ef7a45c1b27a5d315bae40495d28a713546723e905e1f4c04a1119e51144c20dd11f
- SSDEEP
  
  1536:x0vySU8sleOdwWIW+hV4dyjlUWeboS1hp1YiUELiFkSIgiItKq9v6DK:WvTUPcPWIW+hAOBq1YiUELixtBtKq9vV
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence