a1db841cb310fa9e0ac83da180e693a588a80efbb7ba607372155c38569ba146 | Triage

Sharing

General

Target

e76cdc94eaee8a83b448b4459bab4000N.exe
Size

346KB
Sample

240823-qj6ylsydmr
MD5

e76cdc94eaee8a83b448b4459bab4000
SHA1

c344a51f73f444a7dfee60b735f5afc460b37775
SHA256

a1db841cb310fa9e0ac83da180e693a588a80efbb7ba607372155c38569ba146
SHA512

97f572189ea32922ecb2328eb9da6851939af9fa4372d277076a2231a23dcffd493faea529b3cbea54dd282a8f830a57b828159f24f114f8a18dc00e0f7e2a45
SSDEEP

6144:b+E1bCkhdsFj5t13LJhrmMsFj5tzOvfFOM:Vhhds15tFrls15tz4FT

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e76cdc94eaee8a83b448b4459bab4000N.exe
- Size
  
  346KB
- MD5
  
  e76cdc94eaee8a83b448b4459bab4000
- SHA1
  
  c344a51f73f444a7dfee60b735f5afc460b37775
- SHA256
  
  a1db841cb310fa9e0ac83da180e693a588a80efbb7ba607372155c38569ba146
- SHA512
  
  97f572189ea32922ecb2328eb9da6851939af9fa4372d277076a2231a23dcffd493faea529b3cbea54dd282a8f830a57b828159f24f114f8a18dc00e0f7e2a45
- SSDEEP
  
  6144:b+E1bCkhdsFj5t13LJhrmMsFj5tzOvfFOM:Vhhds15tFrls15tz4FT
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence