c65ecc1179e9a44da09cc27def584a88cecc038bfa51cec69fddc698addac589 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e5ef609760cae02fc2f17673c85a6bd0N.exe
Size

93KB
Sample

240822-mmzrxssbkc
MD5

e5ef609760cae02fc2f17673c85a6bd0
SHA1

bb1dc6bb489fb1cd40a24c27439e1a8d7ccfa371
SHA256

c65ecc1179e9a44da09cc27def584a88cecc038bfa51cec69fddc698addac589
SHA512

fcfdfdf598cde69843a828add4ee8129f6d4a67f48a070595aaf8a554cc4469875d3ab511a799a96f183942df5aa0b8a4cb73e3474ff363025e7544b8e3fe0c0
SSDEEP

1536:jCDPdLWF+3OM7ltU1XhUJnVwjevODU+eV1E06/VJgbDL9SETbjiwg58:WBLgaltUtknVwjevOQrEJL6DL9lDY58

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e5ef609760cae02fc2f17673c85a6bd0N.exe
- Size
  
  93KB
- MD5
  
  e5ef609760cae02fc2f17673c85a6bd0
- SHA1
  
  bb1dc6bb489fb1cd40a24c27439e1a8d7ccfa371
- SHA256
  
  c65ecc1179e9a44da09cc27def584a88cecc038bfa51cec69fddc698addac589
- SHA512
  
  fcfdfdf598cde69843a828add4ee8129f6d4a67f48a070595aaf8a554cc4469875d3ab511a799a96f183942df5aa0b8a4cb73e3474ff363025e7544b8e3fe0c0
- SSDEEP
  
  1536:jCDPdLWF+3OM7ltU1XhUJnVwjevODU+eV1E06/VJgbDL9SETbjiwg58:WBLgaltUtknVwjevOQrEJL6DL9lDY58
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence