c8b98240724e2b4e87b1a4f59a902af5f44acd87cad67dcb4e3506ff148abde7 | Triage

Sharing

General

Target

e089e95a1c5d427bbc85e11f8d09c3f0N.exe
Size

112KB
Sample

240823-htye8a1bkb
MD5

e089e95a1c5d427bbc85e11f8d09c3f0
SHA1

eaf97fdd5b5707447774221643be3798410e94d8
SHA256

c8b98240724e2b4e87b1a4f59a902af5f44acd87cad67dcb4e3506ff148abde7
SHA512

d9e5fc96d04bf20d65adbaa7e9d5c4d674de5007a8a234661f6c535360c40f160033852cd0d975d639f3b2cfe00881d35f74dbbeb03c65cbd88530d2bc756047
SSDEEP

1536:CTiGPRLtMeWvjhgGFQyFk2177l2SXWs6lr9Y/yrhrUQVoMdUT+irjVVKm1ieuRz5:yPRReRmMPMSmflr5rhr1RhAo+ie0TZ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e089e95a1c5d427bbc85e11f8d09c3f0N.exe
- Size
  
  112KB
- MD5
  
  e089e95a1c5d427bbc85e11f8d09c3f0
- SHA1
  
  eaf97fdd5b5707447774221643be3798410e94d8
- SHA256
  
  c8b98240724e2b4e87b1a4f59a902af5f44acd87cad67dcb4e3506ff148abde7
- SHA512
  
  d9e5fc96d04bf20d65adbaa7e9d5c4d674de5007a8a234661f6c535360c40f160033852cd0d975d639f3b2cfe00881d35f74dbbeb03c65cbd88530d2bc756047
- SSDEEP
  
  1536:CTiGPRLtMeWvjhgGFQyFk2177l2SXWs6lr9Y/yrhrUQVoMdUT+irjVVKm1ieuRz5:yPRReRmMPMSmflr5rhr1RhAo+ie0TZ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence