e050c03e150f0a41a8382fd23ff15219bda4f666324af691de6e18cec06d6624 | Triage

Sharing

General

Target

ad6f1d6325560ac03b63dc7344142260N.exe
Size

64KB
Sample

240826-ezrcbavcnf
MD5

ad6f1d6325560ac03b63dc7344142260
SHA1

94da4a98f0105883282ebacc81be60584dc3b064
SHA256

e050c03e150f0a41a8382fd23ff15219bda4f666324af691de6e18cec06d6624
SHA512

6a396f31cd58b5ea2b3dc79f42d52c22c9428c3d25d0418a5c925a50e8dbc6eb40ec062180c99677f13a588d387f356dc3912aafa219165b1cb6c3534f4eaf7b
SSDEEP

1536:WJvxZiJwR74Tcr99R80c52Ll7LIS3hGMcVNtBqq3:K+wNzRGWl7LISpcVAs

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ad6f1d6325560ac03b63dc7344142260N.exe
- Size
  
  64KB
- MD5
  
  ad6f1d6325560ac03b63dc7344142260
- SHA1
  
  94da4a98f0105883282ebacc81be60584dc3b064
- SHA256
  
  e050c03e150f0a41a8382fd23ff15219bda4f666324af691de6e18cec06d6624
- SHA512
  
  6a396f31cd58b5ea2b3dc79f42d52c22c9428c3d25d0418a5c925a50e8dbc6eb40ec062180c99677f13a588d387f356dc3912aafa219165b1cb6c3534f4eaf7b
- SSDEEP
  
  1536:WJvxZiJwR74Tcr99R80c52Ll7LIS3hGMcVNtBqq3:K+wNzRGWl7LISpcVAs
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence