57fd371f414c22e8928b157daed65f6c82b6f82a6a1bbc041c5378da0688d524 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a109bc6314b2d1618831886ee71e6690N.exe
Size

109KB
Sample

240901-sm7qesvelc
MD5

a109bc6314b2d1618831886ee71e6690
SHA1

ef178ed2b08887f15cf0288bfb4924f6db87858b
SHA256

57fd371f414c22e8928b157daed65f6c82b6f82a6a1bbc041c5378da0688d524
SHA512

0389414511bc3af6bf196409ef0874183b21e77a089c008b03e861b1a6c9000f39d7d85b5f0bad483a125bd832053733a7e5393587ff834a88deb8f5cca58a41
SSDEEP

3072:zyNl2BCfoxA9dJ/h5k+7NDJ9lLCqwzBu1DjHLMVDqqkSpR:OToA9dFTk+7NDJ9Vwtu1DjrFqhz

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a109bc6314b2d1618831886ee71e6690N.exe
- Size
  
  109KB
- MD5
  
  a109bc6314b2d1618831886ee71e6690
- SHA1
  
  ef178ed2b08887f15cf0288bfb4924f6db87858b
- SHA256
  
  57fd371f414c22e8928b157daed65f6c82b6f82a6a1bbc041c5378da0688d524
- SHA512
  
  0389414511bc3af6bf196409ef0874183b21e77a089c008b03e861b1a6c9000f39d7d85b5f0bad483a125bd832053733a7e5393587ff834a88deb8f5cca58a41
- SSDEEP
  
  3072:zyNl2BCfoxA9dJ/h5k+7NDJ9lLCqwzBu1DjHLMVDqqkSpR:OToA9dFTk+7NDJ9Vwtu1DjrFqhz
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence