446508bb280417304b9b16c5d7618353fce87dabaa265cf65d924faa50421036 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

72b7cd3ff43c108101a0d69b3f712160N.exe
Size

59KB
Sample

240825-a481psygnb
MD5

72b7cd3ff43c108101a0d69b3f712160
SHA1

9ddcd3f1755c56070a1ebf087b9094c31c7c02d4
SHA256

446508bb280417304b9b16c5d7618353fce87dabaa265cf65d924faa50421036
SHA512

ec4b9f6f534c0d245e8137c608a8a4a78bf5b0a3622d96c6e4a399829a2b5717c857423d03717821832dc9ed89191506c00223b17ee6175c4fae782cfd5564d9
SSDEEP

768:EZygcloKpCsb/S0WBxTPioDgOAvThF8D2w8KdDjZ/1H5mMH5nf1fZMEBFELvkVgs:EU1loRSSD1PiUgdThF3UvXpNCyVso

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  72b7cd3ff43c108101a0d69b3f712160N.exe
- Size
  
  59KB
- MD5
  
  72b7cd3ff43c108101a0d69b3f712160
- SHA1
  
  9ddcd3f1755c56070a1ebf087b9094c31c7c02d4
- SHA256
  
  446508bb280417304b9b16c5d7618353fce87dabaa265cf65d924faa50421036
- SHA512
  
  ec4b9f6f534c0d245e8137c608a8a4a78bf5b0a3622d96c6e4a399829a2b5717c857423d03717821832dc9ed89191506c00223b17ee6175c4fae782cfd5564d9
- SSDEEP
  
  768:EZygcloKpCsb/S0WBxTPioDgOAvThF8D2w8KdDjZ/1H5mMH5nf1fZMEBFELvkVgs:EU1loRSSD1PiUgdThF3UvXpNCyVso
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence