303f9cd66f35ef3aa339153828af82c0fc848bc769d04bf8bec3c16fd9bbf475 | Triage

Sharing

General

Target

e047a74dd4fce12e7c5a77bcc4c59e30N.exe
Size

145KB
Sample

240901-cqx3dsygqg
MD5

e047a74dd4fce12e7c5a77bcc4c59e30
SHA1

a5b37fdc5f1b1871ece03914158e333c3f8eebc8
SHA256

303f9cd66f35ef3aa339153828af82c0fc848bc769d04bf8bec3c16fd9bbf475
SHA512

b7a5d0d383ebf6bdcefa18f280d63c3034d7b3c8d3ef802b8a17cd6438a8af6315fd6863cd3f18dae9299bababdd4602c876ab84f414a29d487c195c805bf147
SSDEEP

3072:Avth+5e4HYQe+cjjWBWqD3pFBEV52Ae5aFnVB:zCQerjqBWc5Id

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e047a74dd4fce12e7c5a77bcc4c59e30N.exe
- Size
  
  145KB
- MD5
  
  e047a74dd4fce12e7c5a77bcc4c59e30
- SHA1
  
  a5b37fdc5f1b1871ece03914158e333c3f8eebc8
- SHA256
  
  303f9cd66f35ef3aa339153828af82c0fc848bc769d04bf8bec3c16fd9bbf475
- SHA512
  
  b7a5d0d383ebf6bdcefa18f280d63c3034d7b3c8d3ef802b8a17cd6438a8af6315fd6863cd3f18dae9299bababdd4602c876ab84f414a29d487c195c805bf147
- SSDEEP
  
  3072:Avth+5e4HYQe+cjjWBWqD3pFBEV52Ae5aFnVB:zCQerjqBWc5Id
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence