326be91c92af55840eff34b346a43cad7fde80f35c92057b37d4ffa876080271 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b9e5877fbbf46ea382127d4091a35770N.exe
Size

80KB
Sample

240903-jm7kzs1epr
MD5

b9e5877fbbf46ea382127d4091a35770
SHA1

4468cbd69ef0d9bc80b3f24a30f10a26ebe588cd
SHA256

326be91c92af55840eff34b346a43cad7fde80f35c92057b37d4ffa876080271
SHA512

100924a01ab4b42bc6a83025c434ee8f3d0cff2d474f986a3a57bf1f368f146f84f3532112dad6b6d80aeaf4fb19564a319643d83fce479b0a15960d5a2d8873
SSDEEP

1536:Ihg3TVS51j92LmHKFfRD17R1j/Xky+4hXPC9/XtkhOFeJuqnhCN:jVs1RJq/17bjf5+mXWCgFeJLCN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b9e5877fbbf46ea382127d4091a35770N.exe
- Size
  
  80KB
- MD5
  
  b9e5877fbbf46ea382127d4091a35770
- SHA1
  
  4468cbd69ef0d9bc80b3f24a30f10a26ebe588cd
- SHA256
  
  326be91c92af55840eff34b346a43cad7fde80f35c92057b37d4ffa876080271
- SHA512
  
  100924a01ab4b42bc6a83025c434ee8f3d0cff2d474f986a3a57bf1f368f146f84f3532112dad6b6d80aeaf4fb19564a319643d83fce479b0a15960d5a2d8873
- SSDEEP
  
  1536:Ihg3TVS51j92LmHKFfRD17R1j/Xky+4hXPC9/XtkhOFeJuqnhCN:jVs1RJq/17bjf5+mXWCgFeJLCN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence