bb66afc803602c3ea205cffcdbdaf938e5882a56c030bef584e51205bcbabdec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aedd3275396e84f7fa94c23aaeadfa80N.exe
Size

80KB
Sample

240901-2g3c7avblh
MD5

aedd3275396e84f7fa94c23aaeadfa80
SHA1

4dc409ce5db45e4a8531121c5b0285b947ae36fd
SHA256

bb66afc803602c3ea205cffcdbdaf938e5882a56c030bef584e51205bcbabdec
SHA512

b8ce5b58b2ff4209532da4e6c52d0b0e206ef3f349c3117fbc6ea99b529f59b7af602bf29b22da53e83e262fd13069ab40c769532cc5eb6207c0d30a6a5b6781
SSDEEP

1536:+jowqPIC+EqzwJTwtTiZRNkRSVIhSzDfWqdMVrlEFtyb7IYOOqw4Tv:+cxgCawJ9ZRySVIhSzTWqAhELy1MTTv

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  aedd3275396e84f7fa94c23aaeadfa80N.exe
- Size
  
  80KB
- MD5
  
  aedd3275396e84f7fa94c23aaeadfa80
- SHA1
  
  4dc409ce5db45e4a8531121c5b0285b947ae36fd
- SHA256
  
  bb66afc803602c3ea205cffcdbdaf938e5882a56c030bef584e51205bcbabdec
- SHA512
  
  b8ce5b58b2ff4209532da4e6c52d0b0e206ef3f349c3117fbc6ea99b529f59b7af602bf29b22da53e83e262fd13069ab40c769532cc5eb6207c0d30a6a5b6781
- SSDEEP
  
  1536:+jowqPIC+EqzwJTwtTiZRNkRSVIhSzDfWqdMVrlEFtyb7IYOOqw4Tv:+cxgCawJ9ZRySVIhSzTWqAhELy1MTTv
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence