f49938f6060f93da7694505bd99997e3ce1c596992c9b9577500565715e30d82 | Triage

Sharing

General

Target

ef381317d17938e936b3e7f424aff350N.exe
Size

84KB
Sample

240902-zeajaawfrn
MD5

ef381317d17938e936b3e7f424aff350
SHA1

4ce99d0499e193784305acc26a192757c5464f42
SHA256

f49938f6060f93da7694505bd99997e3ce1c596992c9b9577500565715e30d82
SHA512

536393ffcdc6274a910f9476142644b409b589b0da98178f346782d6a6bbd58a2ea332420f87e3f4cba0c434d1f33bf22fad5f935e5f318fca4ec0e94fef6e17
SSDEEP

1536:L5/sSOn2NN6qORGvjP5Vi8ANZLvfPDyH6n8dEelLYR7xeGSmUmmmmmmmmmmmmmmQ:9/W2NRORGvT5VK3PDyH6n8djlLYR7xr3

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ef381317d17938e936b3e7f424aff350N.exe
- Size
  
  84KB
- MD5
  
  ef381317d17938e936b3e7f424aff350
- SHA1
  
  4ce99d0499e193784305acc26a192757c5464f42
- SHA256
  
  f49938f6060f93da7694505bd99997e3ce1c596992c9b9577500565715e30d82
- SHA512
  
  536393ffcdc6274a910f9476142644b409b589b0da98178f346782d6a6bbd58a2ea332420f87e3f4cba0c434d1f33bf22fad5f935e5f318fca4ec0e94fef6e17
- SSDEEP
  
  1536:L5/sSOn2NN6qORGvjP5Vi8ANZLvfPDyH6n8dEelLYR7xeGSmUmmmmmmmmmmmmmmQ:9/W2NRORGvT5VK3PDyH6n8djlLYR7xr3
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence