c570b7ee92e1964109af991952b7abbd74508d5abb421189fa6c782f6138f776 | Triage

Sharing

General

Target

54f9c4b44a5a4981f9a6ac79cabe04e0N.exe
Size

80KB
Sample

240825-xee3nayejg
MD5

54f9c4b44a5a4981f9a6ac79cabe04e0
SHA1

ebe54a1a5d8df5a5e72582bf16d3dea07de0f955
SHA256

c570b7ee92e1964109af991952b7abbd74508d5abb421189fa6c782f6138f776
SHA512

62bb3c904dace0142d56c44d43071ba9b8d6b36658ecd78cfa000ecd1e0dcd91876b3b6812e1418fbcf4f566b582bdb99981f8391fdfc9f35efde718a3a51ab8
SSDEEP

1536:W8YzeegTrDkmaMuuSYzVDIpRGwQq41EX2MeDRbyYsIRttTRwpzRl3nnFeJuqnhCN:W8YgTrgmlTvJ6GwF4OmxeYsK/Ryl3nnb

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  54f9c4b44a5a4981f9a6ac79cabe04e0N.exe
- Size
  
  80KB
- MD5
  
  54f9c4b44a5a4981f9a6ac79cabe04e0
- SHA1
  
  ebe54a1a5d8df5a5e72582bf16d3dea07de0f955
- SHA256
  
  c570b7ee92e1964109af991952b7abbd74508d5abb421189fa6c782f6138f776
- SHA512
  
  62bb3c904dace0142d56c44d43071ba9b8d6b36658ecd78cfa000ecd1e0dcd91876b3b6812e1418fbcf4f566b582bdb99981f8391fdfc9f35efde718a3a51ab8
- SSDEEP
  
  1536:W8YzeegTrDkmaMuuSYzVDIpRGwQq41EX2MeDRbyYsIRttTRwpzRl3nnFeJuqnhCN:W8YgTrgmlTvJ6GwF4OmxeYsK/Ryl3nnb
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence