0dab996d90bdf8f1aa976b5d2426b4f55d37bf3c462c037ba967392495bc8ef8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7668c2b6b054315d9b65e425bbb89d70N.exe
Size

55KB
Sample

240902-eqqpes1drq
MD5

7668c2b6b054315d9b65e425bbb89d70
SHA1

e309d6e611de3282d12bcf43b5ec6faa98f8fab3
SHA256

0dab996d90bdf8f1aa976b5d2426b4f55d37bf3c462c037ba967392495bc8ef8
SHA512

c03af03359630c3c121e33d83e2d864be50bd420e848aee2b6189d5de1803a149841dce9216fbc0d1414ea8b333728fe63b6ee7dac03865e07863cb24924a8c7
SSDEEP

1536:c9Cre/7sTXjDB3vnyGba0Y/V4n6P52La:c4s7MjDNvnA/hPya

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7668c2b6b054315d9b65e425bbb89d70N.exe
- Size
  
  55KB
- MD5
  
  7668c2b6b054315d9b65e425bbb89d70
- SHA1
  
  e309d6e611de3282d12bcf43b5ec6faa98f8fab3
- SHA256
  
  0dab996d90bdf8f1aa976b5d2426b4f55d37bf3c462c037ba967392495bc8ef8
- SHA512
  
  c03af03359630c3c121e33d83e2d864be50bd420e848aee2b6189d5de1803a149841dce9216fbc0d1414ea8b333728fe63b6ee7dac03865e07863cb24924a8c7
- SSDEEP
  
  1536:c9Cre/7sTXjDB3vnyGba0Y/V4n6P52La:c4s7MjDNvnA/hPya
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence