a7819efe7a64217e597245334149e077d4f67c06846e56046f71cdaaf3b857d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

180858e3e8ecfb40a7d5708c2fcd90e0N.exe
Size

986KB
Sample

240824-gs27cawgnd
MD5

180858e3e8ecfb40a7d5708c2fcd90e0
SHA1

3de2a2e870195f25e9411ad1e8bec06eba22a752
SHA256

a7819efe7a64217e597245334149e077d4f67c06846e56046f71cdaaf3b857d7
SHA512

a8251781c16e22945c62c3c1270d7cffe7e874f0de8b174e299b5ce04e2ec512393542d853b003359a9cbe188c33be81567ab3120826ff7acaaa8f7ac300ab31
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjmHzW9hUd56JsuBSjwGPmO12i1Dzbv:Hha8iAx+1zwjmHd6vB/jO11zk8hz6

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  180858e3e8ecfb40a7d5708c2fcd90e0N.exe
- Size
  
  986KB
- MD5
  
  180858e3e8ecfb40a7d5708c2fcd90e0
- SHA1
  
  3de2a2e870195f25e9411ad1e8bec06eba22a752
- SHA256
  
  a7819efe7a64217e597245334149e077d4f67c06846e56046f71cdaaf3b857d7
- SHA512
  
  a8251781c16e22945c62c3c1270d7cffe7e874f0de8b174e299b5ce04e2ec512393542d853b003359a9cbe188c33be81567ab3120826ff7acaaa8f7ac300ab31
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjmHzW9hUd56JsuBSjwGPmO12i1Dzbv:Hha8iAx+1zwjmHd6vB/jO11zk8hz6
Score

6^/10

persistence discovery
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence