7719831e92ead1c83e1f44aa6efe830f6d60e4987b8299ee76b92386ded930ff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e9cbe1d69ef78b03fec15ddc16a83020N.exe
Size

77KB
Sample

240822-knn1psxerf
MD5

e9cbe1d69ef78b03fec15ddc16a83020
SHA1

70521e01fcb32647424d0ff8b8ff21e5daf40d46
SHA256

7719831e92ead1c83e1f44aa6efe830f6d60e4987b8299ee76b92386ded930ff
SHA512

622f2287c0d63e0a25ee99aa688cde902ef75d8064b916eb2b8b34d540051d0b560ad489da88558e95664aecd632691f3b4cf534c8e2a0a3308ae27e731b2890
SSDEEP

1536:4YoTbos/Z9kG9/gOULvnv6w2LtFwfi+TjRC/D:4RL9WOwyh3wf1TjYD

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e9cbe1d69ef78b03fec15ddc16a83020N.exe
- Size
  
  77KB
- MD5
  
  e9cbe1d69ef78b03fec15ddc16a83020
- SHA1
  
  70521e01fcb32647424d0ff8b8ff21e5daf40d46
- SHA256
  
  7719831e92ead1c83e1f44aa6efe830f6d60e4987b8299ee76b92386ded930ff
- SHA512
  
  622f2287c0d63e0a25ee99aa688cde902ef75d8064b916eb2b8b34d540051d0b560ad489da88558e95664aecd632691f3b4cf534c8e2a0a3308ae27e731b2890
- SSDEEP
  
  1536:4YoTbos/Z9kG9/gOULvnv6w2LtFwfi+TjRC/D:4RL9WOwyh3wf1TjYD
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence