7ef65265ad7435d092b06a98bd12305b6d3d4d931ddb1cc9a16fde77f5acdbad | Triage

Sharing

General

Target

a5b69d96234a6bd4f680c6a17dc52360N.exe
Size

376KB
Sample

240823-1nx7dayekc
MD5

a5b69d96234a6bd4f680c6a17dc52360
SHA1

857a0aae81ebd700ff575ed7cddf130c03b6ecd7
SHA256

7ef65265ad7435d092b06a98bd12305b6d3d4d931ddb1cc9a16fde77f5acdbad
SHA512

95f5ac8f24e6a8c2efa87205878e66a29c3797e1482965bcfdd57d995dd894a055e841a189437fa8f906fc6f49cad2aea2b95c5e2eecfdd6bdf345d5be7af24e
SSDEEP

6144:RohZSfIEDkCC7oQ0IV/Atl/AtW1OE43V1+25CzRoQ0Ibl4HdE43V1+2:pfIEDo50I2mi4lCzb0IF4

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a5b69d96234a6bd4f680c6a17dc52360N.exe
- Size
  
  376KB
- MD5
  
  a5b69d96234a6bd4f680c6a17dc52360
- SHA1
  
  857a0aae81ebd700ff575ed7cddf130c03b6ecd7
- SHA256
  
  7ef65265ad7435d092b06a98bd12305b6d3d4d931ddb1cc9a16fde77f5acdbad
- SHA512
  
  95f5ac8f24e6a8c2efa87205878e66a29c3797e1482965bcfdd57d995dd894a055e841a189437fa8f906fc6f49cad2aea2b95c5e2eecfdd6bdf345d5be7af24e
- SSDEEP
  
  6144:RohZSfIEDkCC7oQ0IV/Atl/AtW1OE43V1+25CzRoQ0Ibl4HdE43V1+2:pfIEDo50I2mi4lCzb0IF4
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence