cb2633264e61dbeeef3fe8ec0d4d62fd68604d1f9df9e52ce8e929bb63789b8f | Triage

Sharing

General

Target

d54de7de0dbd3dc931a1711be2e64830N.exe
Size

80KB
Sample

240825-kbeaqswepj
MD5

d54de7de0dbd3dc931a1711be2e64830
SHA1

3595ed6d5e4491a33d00be5ce5418d7659903d65
SHA256

cb2633264e61dbeeef3fe8ec0d4d62fd68604d1f9df9e52ce8e929bb63789b8f
SHA512

5c61465eb756bc2ba5c89cfcbd25c79f14031c4a615ef71d4c85c9faa9b1bdf158cf46ad8efca3d885990f6e95eef63fdb519e96daf37c8e09bb0b47eac5110f
SSDEEP

1536:7rwTd3EbIgeUft3JRYpS+KWiOyeq2Cu5VRj962LxJ9VqDlzVxyh+CbxMa:nwTd0b1t3ApS+KWiOyeq2Cu5VRjlxJ95

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d54de7de0dbd3dc931a1711be2e64830N.exe
- Size
  
  80KB
- MD5
  
  d54de7de0dbd3dc931a1711be2e64830
- SHA1
  
  3595ed6d5e4491a33d00be5ce5418d7659903d65
- SHA256
  
  cb2633264e61dbeeef3fe8ec0d4d62fd68604d1f9df9e52ce8e929bb63789b8f
- SHA512
  
  5c61465eb756bc2ba5c89cfcbd25c79f14031c4a615ef71d4c85c9faa9b1bdf158cf46ad8efca3d885990f6e95eef63fdb519e96daf37c8e09bb0b47eac5110f
- SSDEEP
  
  1536:7rwTd3EbIgeUft3JRYpS+KWiOyeq2Cu5VRj962LxJ9VqDlzVxyh+CbxMa:nwTd0b1t3ApS+KWiOyeq2Cu5VRjlxJ95
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence