b1039d48104d7b49919c7e1851a6c2a2a648798741e33be364f04712a6aad336 | Triage

Sharing

General

Target

e0d8266cfb97059f5ba5a4abc6354a70N.exe
Size

357KB
Sample

240822-n7t8lswbnb
MD5

e0d8266cfb97059f5ba5a4abc6354a70
SHA1

8c2c8d099a74b76b2236a0dd5597d5d9a88635ab
SHA256

b1039d48104d7b49919c7e1851a6c2a2a648798741e33be364f04712a6aad336
SHA512

34b524042acbece5b2de877597e4d9ffab5202f907e27997dd0cadbd289749d80452fd43e50a09a1c0809f30245ab76af57935ce7a3b88522a01701daa9a4f05
SSDEEP

6144:sFJi9DsSPln9OzFlHp1n6xJmPMwZoXpKtCe8AUReheFlfSZR0SvsuFrGoyeg3klx:sC9gWcTZoXpKtCe1eehil6ZR5ZrQeg3e

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e0d8266cfb97059f5ba5a4abc6354a70N.exe
- Size
  
  357KB
- MD5
  
  e0d8266cfb97059f5ba5a4abc6354a70
- SHA1
  
  8c2c8d099a74b76b2236a0dd5597d5d9a88635ab
- SHA256
  
  b1039d48104d7b49919c7e1851a6c2a2a648798741e33be364f04712a6aad336
- SHA512
  
  34b524042acbece5b2de877597e4d9ffab5202f907e27997dd0cadbd289749d80452fd43e50a09a1c0809f30245ab76af57935ce7a3b88522a01701daa9a4f05
- SSDEEP
  
  6144:sFJi9DsSPln9OzFlHp1n6xJmPMwZoXpKtCe8AUReheFlfSZR0SvsuFrGoyeg3klx:sC9gWcTZoXpKtCe1eehil6ZR5ZrQeg3e
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence