27ae500bdd7971decdd4a45d913de55aceb14c70e6478942c57093dffc422b0d | Triage

Sharing

General

Target

e3d7abfdc8b70e35e102d4b31d52b5a0N.exe
Size

340KB
Sample

240823-nk3w8s1dqe
MD5

e3d7abfdc8b70e35e102d4b31d52b5a0
SHA1

f26146e6c3bc199dc0d6b584125f6efcaadadef8
SHA256

27ae500bdd7971decdd4a45d913de55aceb14c70e6478942c57093dffc422b0d
SHA512

1b2f453eed656f580ad312571e591c37fd49849d0c0b69f9c3893f684f86b6ba96ce8845cecadc9f55584186d3a2b59e5d73dae45e779c7af49abaa4cf143841
SSDEEP

6144:XoUkVpcHIyedZwlNPjLs+H8rtMsQBJyJyymeH:GbyGZwlNPjLYRMsXJvmeH

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e3d7abfdc8b70e35e102d4b31d52b5a0N.exe
- Size
  
  340KB
- MD5
  
  e3d7abfdc8b70e35e102d4b31d52b5a0
- SHA1
  
  f26146e6c3bc199dc0d6b584125f6efcaadadef8
- SHA256
  
  27ae500bdd7971decdd4a45d913de55aceb14c70e6478942c57093dffc422b0d
- SHA512
  
  1b2f453eed656f580ad312571e591c37fd49849d0c0b69f9c3893f684f86b6ba96ce8845cecadc9f55584186d3a2b59e5d73dae45e779c7af49abaa4cf143841
- SSDEEP
  
  6144:XoUkVpcHIyedZwlNPjLs+H8rtMsQBJyJyymeH:GbyGZwlNPjLYRMsXJvmeH
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence