3ca5653cce617028cafaed4be1458013023bdd61a52038ee1419d3004bbf1a67 | Triage

Sharing

General

Target

23b6f42dfc0ee2196533b781bb55aa20N.exe
Size

45KB
Sample

240829-epaxksvcmr
MD5

23b6f42dfc0ee2196533b781bb55aa20
SHA1

1261d1d563babf61566c1eeaa68a136c32adf5b2
SHA256

3ca5653cce617028cafaed4be1458013023bdd61a52038ee1419d3004bbf1a67
SHA512

f056fe6dbf5bd0e0849d8aa1655b1bde29d027d051801222f062ae2a0b87287266d75d92454b2d359462ec5dfb98183abfb34b3eff38284c698242ec7be089ed
SSDEEP

768:Njbqg9vMfoD0brL7ezdgzUXpkCCIJGKb3xD3/1H5r:NPUoD8nyd1Xph3xDJd

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  23b6f42dfc0ee2196533b781bb55aa20N.exe
- Size
  
  45KB
- MD5
  
  23b6f42dfc0ee2196533b781bb55aa20
- SHA1
  
  1261d1d563babf61566c1eeaa68a136c32adf5b2
- SHA256
  
  3ca5653cce617028cafaed4be1458013023bdd61a52038ee1419d3004bbf1a67
- SHA512
  
  f056fe6dbf5bd0e0849d8aa1655b1bde29d027d051801222f062ae2a0b87287266d75d92454b2d359462ec5dfb98183abfb34b3eff38284c698242ec7be089ed
- SSDEEP
  
  768:Njbqg9vMfoD0brL7ezdgzUXpkCCIJGKb3xD3/1H5r:NPUoD8nyd1Xph3xDJd
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence