bb50e10dc592dbaf82ceb5f4a3b368595a09a23c4821459975ba93524dd4f143 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a0ddaf6bf15abfb2b79c4dbb1c195020N.exe
Size

89KB
Sample

240901-lc5praxalj
MD5

a0ddaf6bf15abfb2b79c4dbb1c195020
SHA1

6fdef66510b14efcf86d4cdb82a7eb84ae1614de
SHA256

bb50e10dc592dbaf82ceb5f4a3b368595a09a23c4821459975ba93524dd4f143
SHA512

ed31847e6717966e889f2bdabb6afe00fd6e4f067860969f409680e06622490612316f5e7e14594d8ed737ea18523dd784a1908fc70c5efca0c7bac6e54a9807
SSDEEP

1536:YVsv7IY8q6eRip2Xo9BdEQx4BAUyLPr4FdQL0Qm6g+rcnlExkg8F:YVsUYpRA9XEJAUgPr4FdeDm6g0cnlakh

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a0ddaf6bf15abfb2b79c4dbb1c195020N.exe
- Size
  
  89KB
- MD5
  
  a0ddaf6bf15abfb2b79c4dbb1c195020
- SHA1
  
  6fdef66510b14efcf86d4cdb82a7eb84ae1614de
- SHA256
  
  bb50e10dc592dbaf82ceb5f4a3b368595a09a23c4821459975ba93524dd4f143
- SHA512
  
  ed31847e6717966e889f2bdabb6afe00fd6e4f067860969f409680e06622490612316f5e7e14594d8ed737ea18523dd784a1908fc70c5efca0c7bac6e54a9807
- SSDEEP
  
  1536:YVsv7IY8q6eRip2Xo9BdEQx4BAUyLPr4FdQL0Qm6g+rcnlExkg8F:YVsUYpRA9XEJAUgPr4FdeDm6g0cnlakh
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence