ace52d6bd972c404dc7a9378faf78ce25697423c8e6e90d4554904543c855b7a | Triage

Sharing

General

Target

0f2e3f315723f295ef850dd8564cad90N.exe
Size

77KB
Sample

240825-pvf1wsvbja
MD5

0f2e3f315723f295ef850dd8564cad90
SHA1

233adf9b6b50897dc908a37099cb6f6c35e2f895
SHA256

ace52d6bd972c404dc7a9378faf78ce25697423c8e6e90d4554904543c855b7a
SHA512

e6e5bcb637fc83b15270ddaf57a229f0189f888780a27dafbbd663c75a6ecfba9e28f6c1159a049863961c08515cc4208d0100c8ed4de4b0c64650304d35f921
SSDEEP

1536:q7DU/8RjvrbDPFsYfYZDSZ3Ba072Lt+0wfi+TjRC/D:q7DU/8RDXpvYJu+Q0wf1TjYD

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  0f2e3f315723f295ef850dd8564cad90N.exe
- Size
  
  77KB
- MD5
  
  0f2e3f315723f295ef850dd8564cad90
- SHA1
  
  233adf9b6b50897dc908a37099cb6f6c35e2f895
- SHA256
  
  ace52d6bd972c404dc7a9378faf78ce25697423c8e6e90d4554904543c855b7a
- SHA512
  
  e6e5bcb637fc83b15270ddaf57a229f0189f888780a27dafbbd663c75a6ecfba9e28f6c1159a049863961c08515cc4208d0100c8ed4de4b0c64650304d35f921
- SSDEEP
  
  1536:q7DU/8RjvrbDPFsYfYZDSZ3Ba072Lt+0wfi+TjRC/D:q7DU/8RDXpvYJu+Q0wf1TjYD
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence