e5c8cba5875226ab2fd73d9bee08517270c945569495005da9b0741bb433ad2f | Triage

Sharing

General

Target

6bb8b797604d4a9ef70ec94036bdfa80N.exe
Size

94KB
Sample

240824-2lm43atcrh
MD5

6bb8b797604d4a9ef70ec94036bdfa80
SHA1

5ff2864c8ffa7209a35b6f0cb530bdadebc04c05
SHA256

e5c8cba5875226ab2fd73d9bee08517270c945569495005da9b0741bb433ad2f
SHA512

66a3bf47cf591f5431564316fd7111a7f23faad6969fe50f3cc0b21027b747e877081488f6efad30bae8bf6937c1d870084d276325f283a22f002c2034803a80
SSDEEP

1536:cDZf3jWT0R6QEt4XTATGQ67gPu5bHgXcW/PY8OULaI7BR9L4DT2EnINs:bIRuqjAPvP02T/dVN6+ob

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6bb8b797604d4a9ef70ec94036bdfa80N.exe
- Size
  
  94KB
- MD5
  
  6bb8b797604d4a9ef70ec94036bdfa80
- SHA1
  
  5ff2864c8ffa7209a35b6f0cb530bdadebc04c05
- SHA256
  
  e5c8cba5875226ab2fd73d9bee08517270c945569495005da9b0741bb433ad2f
- SHA512
  
  66a3bf47cf591f5431564316fd7111a7f23faad6969fe50f3cc0b21027b747e877081488f6efad30bae8bf6937c1d870084d276325f283a22f002c2034803a80
- SSDEEP
  
  1536:cDZf3jWT0R6QEt4XTATGQ67gPu5bHgXcW/PY8OULaI7BR9L4DT2EnINs:bIRuqjAPvP02T/dVN6+ob
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence