c03442eda27096f0186604793535bedb7b9c2fd28a4458652a5e03227401b5e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b5133c737803df27ec90171b28e58250N.exe
Size

56KB
Sample

240903-mr8kmawapb
MD5

b5133c737803df27ec90171b28e58250
SHA1

cb2c1fdb47da69bc426db7d170363ac627c112af
SHA256

c03442eda27096f0186604793535bedb7b9c2fd28a4458652a5e03227401b5e7
SHA512

cbfc09532f063ec4c803b497573f95bdd8612bffc149e3ccf580dd17e0f0ebf730ad4f50c796c8faae9aca7fb3503bcd0ea822dc690000a062d5bd47fbf76118
SSDEEP

768:lAC+elMebcDJLTqO4w8YW0DWztnLQEPEzdkSqY5AJMYOaE3TqM03c0SB0/1H5xX3:lAfhtJLmO46Wrzd9PEJXkO5TL033iWF

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b5133c737803df27ec90171b28e58250N.exe
- Size
  
  56KB
- MD5
  
  b5133c737803df27ec90171b28e58250
- SHA1
  
  cb2c1fdb47da69bc426db7d170363ac627c112af
- SHA256
  
  c03442eda27096f0186604793535bedb7b9c2fd28a4458652a5e03227401b5e7
- SHA512
  
  cbfc09532f063ec4c803b497573f95bdd8612bffc149e3ccf580dd17e0f0ebf730ad4f50c796c8faae9aca7fb3503bcd0ea822dc690000a062d5bd47fbf76118
- SSDEEP
  
  768:lAC+elMebcDJLTqO4w8YW0DWztnLQEPEzdkSqY5AJMYOaE3TqM03c0SB0/1H5xX3:lAfhtJLmO46Wrzd9PEJXkO5TL033iWF
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence