986428fba58c36b3999d4bfb456ce6d8b39fddb4cacb23fb2aa8e18e6ba8225b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7bc1fe9f213dcf2539ebae8dc3b04ae0N.exe
Size

97KB
Sample

240825-x7wk4s1ane
MD5

7bc1fe9f213dcf2539ebae8dc3b04ae0
SHA1

ec8770ea9b5a4ee6e3c1fc1658b4d1b5d026c5c8
SHA256

986428fba58c36b3999d4bfb456ce6d8b39fddb4cacb23fb2aa8e18e6ba8225b
SHA512

4f0768b3378fdc8c46cda19d6422dadaa91a69fe9e7efb670ee85321e5225f231372d5fefc80ef3020501db0d8ce61217b88bbb1a708dc065fd0997a944b44c5
SSDEEP

1536:qHogBimRapEC4kzwQb8M9zpKW+K3sQf8CyYqFvJXeYZ6:AogBiD2Lcz8M9zCCf8CFGJXeK6

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7bc1fe9f213dcf2539ebae8dc3b04ae0N.exe
- Size
  
  97KB
- MD5
  
  7bc1fe9f213dcf2539ebae8dc3b04ae0
- SHA1
  
  ec8770ea9b5a4ee6e3c1fc1658b4d1b5d026c5c8
- SHA256
  
  986428fba58c36b3999d4bfb456ce6d8b39fddb4cacb23fb2aa8e18e6ba8225b
- SHA512
  
  4f0768b3378fdc8c46cda19d6422dadaa91a69fe9e7efb670ee85321e5225f231372d5fefc80ef3020501db0d8ce61217b88bbb1a708dc065fd0997a944b44c5
- SSDEEP
  
  1536:qHogBimRapEC4kzwQb8M9zpKW+K3sQf8CyYqFvJXeYZ6:AogBiD2Lcz8M9zCCf8CFGJXeK6
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence