a615222a3bfb54f45c3cd7e77718e6a29bd5f0b244527308f35d8998f4f0cef6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7aeec3f4c3008d26d359d550229cb4b0N.exe
Size

327KB
Sample

240829-lz6wbsxfmn
MD5

7aeec3f4c3008d26d359d550229cb4b0
SHA1

72eaa78c2d9f9bc3de0fda3690c59652ed53ae2d
SHA256

a615222a3bfb54f45c3cd7e77718e6a29bd5f0b244527308f35d8998f4f0cef6
SHA512

91eb2c23234af2f4cf85cd7a6dc6ffbfdfc1ab02969acee98e9d4317fad1fa95f2552d356056879af9dfa650af09b2d3763a5bf36085984ae3d01ab07425948a
SSDEEP

3072:Dsy1/4AkvQgOb50A9IOluCkMCEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEESLjb5mU:F1/4AjNkAj0+r+Mds9BY

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7aeec3f4c3008d26d359d550229cb4b0N.exe
- Size
  
  327KB
- MD5
  
  7aeec3f4c3008d26d359d550229cb4b0
- SHA1
  
  72eaa78c2d9f9bc3de0fda3690c59652ed53ae2d
- SHA256
  
  a615222a3bfb54f45c3cd7e77718e6a29bd5f0b244527308f35d8998f4f0cef6
- SHA512
  
  91eb2c23234af2f4cf85cd7a6dc6ffbfdfc1ab02969acee98e9d4317fad1fa95f2552d356056879af9dfa650af09b2d3763a5bf36085984ae3d01ab07425948a
- SSDEEP
  
  3072:Dsy1/4AkvQgOb50A9IOluCkMCEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEESLjb5mU:F1/4AjNkAj0+r+Mds9BY
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence