e259fb097a253d423a2bf537ae1a51cf0eaa7287ec2f6208473529030a05b96f | Triage

Sharing

General

Target

bbd0e29d37604dc19b94bb62ac796510N.exe
Size

77KB
Sample

240824-nsz6bayamf
MD5

bbd0e29d37604dc19b94bb62ac796510
SHA1

db0608cdf4fc2bbe9bfa3a72e2596ddab97e83ed
SHA256

e259fb097a253d423a2bf537ae1a51cf0eaa7287ec2f6208473529030a05b96f
SHA512

15dc9dbd5aedc1543b4296eddd5b4301936830abb39966658fef60ce7cf1b8ea94efbd1b7cdf33087da40b7b98bcb95f3b1f7f1e890e85b7172475dde31535a6
SSDEEP

1536:l8YAz5KKE5n0x4dszd8cfrCqiS4hTU82Ltpwfi+TjRC/D:OE50x4dszd8UiS4pU1zwf1TjYD

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  bbd0e29d37604dc19b94bb62ac796510N.exe
- Size
  
  77KB
- MD5
  
  bbd0e29d37604dc19b94bb62ac796510
- SHA1
  
  db0608cdf4fc2bbe9bfa3a72e2596ddab97e83ed
- SHA256
  
  e259fb097a253d423a2bf537ae1a51cf0eaa7287ec2f6208473529030a05b96f
- SHA512
  
  15dc9dbd5aedc1543b4296eddd5b4301936830abb39966658fef60ce7cf1b8ea94efbd1b7cdf33087da40b7b98bcb95f3b1f7f1e890e85b7172475dde31535a6
- SSDEEP
  
  1536:l8YAz5KKE5n0x4dszd8cfrCqiS4hTU82Ltpwfi+TjRC/D:OE50x4dszd8UiS4pU1zwf1TjYD
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence