8015c9a512c3814c3d6707880a7fe4767f47a684f80282b2121b2c612d496f2c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebf7568d11334e138cee2d75ba9d2790N.exe
Size

320KB
Sample

240823-1j7v1sycjh
MD5

ebf7568d11334e138cee2d75ba9d2790
SHA1

10dfc3f8f6f82313d5c122e51df1830b98b8a3e4
SHA256

8015c9a512c3814c3d6707880a7fe4767f47a684f80282b2121b2c612d496f2c
SHA512

71663749440917623397729d3265b161f175a4fe0ec5cfbf65b1d9478cf71ff41e3ce22764ada03b8145122286f2a2ce45254ff980ac260ee7ca4cf8c6a868f5
SSDEEP

6144:Jrwf0i17w6/eKxSlKKZ74ueKxff0qjwszeX9z6/ojwx:KciQlr54ujjgj8

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ebf7568d11334e138cee2d75ba9d2790N.exe
- Size
  
  320KB
- MD5
  
  ebf7568d11334e138cee2d75ba9d2790
- SHA1
  
  10dfc3f8f6f82313d5c122e51df1830b98b8a3e4
- SHA256
  
  8015c9a512c3814c3d6707880a7fe4767f47a684f80282b2121b2c612d496f2c
- SHA512
  
  71663749440917623397729d3265b161f175a4fe0ec5cfbf65b1d9478cf71ff41e3ce22764ada03b8145122286f2a2ce45254ff980ac260ee7ca4cf8c6a868f5
- SSDEEP
  
  6144:Jrwf0i17w6/eKxSlKKZ74ueKxff0qjwszeX9z6/ojwx:KciQlr54ujjgj8
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence