b39bbff7a1a9c310174d2bca300425c0e8aaccbb5ed156de1f999910c4c28f90 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a058aba61682720b800388a9f57a7cf0N.exe
Size

57KB
Sample

240903-enpdkswfqr
MD5

a058aba61682720b800388a9f57a7cf0
SHA1

e4dae81d413bb7d89d8728a3013199cec0a379d6
SHA256

b39bbff7a1a9c310174d2bca300425c0e8aaccbb5ed156de1f999910c4c28f90
SHA512

f46115b0216b9ffebe7186a5b93a59f38fd74795451bbcf641038e0bfe600ddf92d4fe40dfdbd98c52c9fdb326a1fb26ae39935f7f4c2a1ea55e1b09dbe00e80
SSDEEP

768:9RI/d6gHbvfuMbc6gOGpYcqrkBKGSKl91unjLPFrUN1ahjPcgiOP59W/1H5JzXdq:96dHLFb2HpYcVBMMunjprW0Y/K7Mjx

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a058aba61682720b800388a9f57a7cf0N.exe
- Size
  
  57KB
- MD5
  
  a058aba61682720b800388a9f57a7cf0
- SHA1
  
  e4dae81d413bb7d89d8728a3013199cec0a379d6
- SHA256
  
  b39bbff7a1a9c310174d2bca300425c0e8aaccbb5ed156de1f999910c4c28f90
- SHA512
  
  f46115b0216b9ffebe7186a5b93a59f38fd74795451bbcf641038e0bfe600ddf92d4fe40dfdbd98c52c9fdb326a1fb26ae39935f7f4c2a1ea55e1b09dbe00e80
- SSDEEP
  
  768:9RI/d6gHbvfuMbc6gOGpYcqrkBKGSKl91unjLPFrUN1ahjPcgiOP59W/1H5JzXdq:96dHLFb2HpYcVBMMunjprW0Y/K7Mjx
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence