d52f9848fcc04d16ed6cda32539d5119c91f117c564f4c95fd44c01f9c5639b4 | Triage

Sharing

General

Target

bebadee67773bdee160e822b5b1a7da0N.exe
Size

362KB
Sample

240822-cxqxnaxfpq
MD5

bebadee67773bdee160e822b5b1a7da0
SHA1

3a33c157ebf1b9e16c19f8316077a786163ac0ea
SHA256

d52f9848fcc04d16ed6cda32539d5119c91f117c564f4c95fd44c01f9c5639b4
SHA512

8efc6fd8b961b08df5ddad4550005fb028af333f22aa538d27152df094dd92b85b42d08db0ce84fccc1e93b373cff3ca04e285896d5300e338f33584193e2630
SSDEEP

6144:gB57v7td7tGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxris:gz7v7tdtmuMtrQ07nGWxWSsmiMyh95rp

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  bebadee67773bdee160e822b5b1a7da0N.exe
- Size
  
  362KB
- MD5
  
  bebadee67773bdee160e822b5b1a7da0
- SHA1
  
  3a33c157ebf1b9e16c19f8316077a786163ac0ea
- SHA256
  
  d52f9848fcc04d16ed6cda32539d5119c91f117c564f4c95fd44c01f9c5639b4
- SHA512
  
  8efc6fd8b961b08df5ddad4550005fb028af333f22aa538d27152df094dd92b85b42d08db0ce84fccc1e93b373cff3ca04e285896d5300e338f33584193e2630
- SSDEEP
  
  6144:gB57v7td7tGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxris:gz7v7tdtmuMtrQ07nGWxWSsmiMyh95rp
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence