aa3ae4dfecaeba723d514d6ee341507891211e6b656ec452000a115ec645a682 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bcb0d48f4bd720f2b31347fead999500N.exe
Size

94KB
Sample

240823-sd5jpstcpq
MD5

bcb0d48f4bd720f2b31347fead999500
SHA1

df59199bb089db03e3b862716984cd2e15c69097
SHA256

aa3ae4dfecaeba723d514d6ee341507891211e6b656ec452000a115ec645a682
SHA512

40ea75a990af04bc27389184d629daffdba1ffbb2e3cdc0793caaa911d001cc915d951c9419d92fefa123a5532e60c16c857867b25f0b0556c76b4b2c15970e4
SSDEEP

1536:hzaD3FTPbFKyvattJf23ZHFeiPlfeFEmgmqFTCyfkOjj3K2zGYm34pv5YnxdRVku:hzSNPJKxc3ZHFpP0GmgmTOPzmkWj3kry

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  bcb0d48f4bd720f2b31347fead999500N.exe
- Size
  
  94KB
- MD5
  
  bcb0d48f4bd720f2b31347fead999500
- SHA1
  
  df59199bb089db03e3b862716984cd2e15c69097
- SHA256
  
  aa3ae4dfecaeba723d514d6ee341507891211e6b656ec452000a115ec645a682
- SHA512
  
  40ea75a990af04bc27389184d629daffdba1ffbb2e3cdc0793caaa911d001cc915d951c9419d92fefa123a5532e60c16c857867b25f0b0556c76b4b2c15970e4
- SSDEEP
  
  1536:hzaD3FTPbFKyvattJf23ZHFeiPlfeFEmgmqFTCyfkOjj3K2zGYm34pv5YnxdRVku:hzSNPJKxc3ZHFpP0GmgmTOPzmkWj3kry
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence