0e924f25c799f05cb9b9ce5ee0f5d39d35d63809d08d963c51596e102fdc9c00 | Triage

Sharing

General

Target

3e1343ee02ace7cf3fbbedba28a8db10N.exe
Size

79KB
Sample

240829-ecrpkascph
MD5

3e1343ee02ace7cf3fbbedba28a8db10
SHA1

19c652306d4d8afcd4bf30d99f810163e4754964
SHA256

0e924f25c799f05cb9b9ce5ee0f5d39d35d63809d08d963c51596e102fdc9c00
SHA512

51c4c9a78f91c68c84a03efb8bd9b09a370c3dd3d19fd31204ddfa43699ed83b0514a5dce788c728b34656cbdc2fd1d4d3c27865492b48971e8232c151a3d6b2
SSDEEP

1536:j4rOjJ3LGra5B0RYpVhqu25UERiiFkSIgiItKq9v6DK:QOjJ3LGWn0ahqTUEIixtBtKq9vV

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3e1343ee02ace7cf3fbbedba28a8db10N.exe
- Size
  
  79KB
- MD5
  
  3e1343ee02ace7cf3fbbedba28a8db10
- SHA1
  
  19c652306d4d8afcd4bf30d99f810163e4754964
- SHA256
  
  0e924f25c799f05cb9b9ce5ee0f5d39d35d63809d08d963c51596e102fdc9c00
- SHA512
  
  51c4c9a78f91c68c84a03efb8bd9b09a370c3dd3d19fd31204ddfa43699ed83b0514a5dce788c728b34656cbdc2fd1d4d3c27865492b48971e8232c151a3d6b2
- SSDEEP
  
  1536:j4rOjJ3LGra5B0RYpVhqu25UERiiFkSIgiItKq9v6DK:QOjJ3LGWn0ahqTUEIixtBtKq9vV
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence