67cb168c28cf26f41870e790639e1b2d9289f47a6f3e4d130cb8fffe69bbff0a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a208eb45b2ef8138dc86cf249c99ced0N.exe
Size

111KB
Sample

240822-z2qtsaxhne
MD5

a208eb45b2ef8138dc86cf249c99ced0
SHA1

cd6c7a6842af7d46f821f711087f1d5479f02902
SHA256

67cb168c28cf26f41870e790639e1b2d9289f47a6f3e4d130cb8fffe69bbff0a
SHA512

702ed38265c55043a4a77787f91a0ee98558485b201a446ba65593564febcd00e46cf7faaaa10855ac906f87db107cf13425c31cb00f12e2c7dc577026da66c9
SSDEEP

3072:QXiXSbPbMHRCXmhDSBC8x40eUdw0v0wnJcefSXQHPTTAkvB5Ddj:ZSbaRhhJVPAtnJfKXqPTX7DB

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a208eb45b2ef8138dc86cf249c99ced0N.exe
- Size
  
  111KB
- MD5
  
  a208eb45b2ef8138dc86cf249c99ced0
- SHA1
  
  cd6c7a6842af7d46f821f711087f1d5479f02902
- SHA256
  
  67cb168c28cf26f41870e790639e1b2d9289f47a6f3e4d130cb8fffe69bbff0a
- SHA512
  
  702ed38265c55043a4a77787f91a0ee98558485b201a446ba65593564febcd00e46cf7faaaa10855ac906f87db107cf13425c31cb00f12e2c7dc577026da66c9
- SSDEEP
  
  3072:QXiXSbPbMHRCXmhDSBC8x40eUdw0v0wnJcefSXQHPTTAkvB5Ddj:ZSbaRhhJVPAtnJfKXqPTX7DB
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence