e537f75a1fd5dd925525c05fddcde28b43ee64b8bc95ffa42f595c1cd2f2ac3f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf4e2eb80df9d62df303ab00d0009790N.exe
Size

8.5MB
Sample

240824-1yeg1ssbnh
MD5

bf4e2eb80df9d62df303ab00d0009790
SHA1

a160b2999e44ba8a32f805a53e35f15dd66effc4
SHA256

e537f75a1fd5dd925525c05fddcde28b43ee64b8bc95ffa42f595c1cd2f2ac3f
SHA512

7d865f4f7a8fb9403535b8f14707cd43164078a665ae081bbe305ef95dcb01c8bc6e789565f8f8e045870fca2c7c4dd63d4aa6c6fc16cc6060567b17361333b3
SSDEEP

98304:gcIIHnHuHnHcIIHnH2HnHcIIHnHuHnHcIIHnHoHnHcIIHnHuHnHcIIHnHAHnHcI+:o///F/1/F/

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  bf4e2eb80df9d62df303ab00d0009790N.exe
- Size
  
  8.5MB
- MD5
  
  bf4e2eb80df9d62df303ab00d0009790
- SHA1
  
  a160b2999e44ba8a32f805a53e35f15dd66effc4
- SHA256
  
  e537f75a1fd5dd925525c05fddcde28b43ee64b8bc95ffa42f595c1cd2f2ac3f
- SHA512
  
  7d865f4f7a8fb9403535b8f14707cd43164078a665ae081bbe305ef95dcb01c8bc6e789565f8f8e045870fca2c7c4dd63d4aa6c6fc16cc6060567b17361333b3
- SSDEEP
  
  98304:gcIIHnHuHnHcIIHnH2HnHcIIHnHuHnHcIIHnHoHnHcIIHnHuHnHcIIHnHAHnHcI+:o///F/1/F/
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence