cba35e4f68fd22c2936ab8e0d5738ace70c5551a3d0268ca6712ed4baf20a7ef | Triage

Sharing

General

Target

e66eae5b935cf4a3c42335f9040503a0N.exe
Size

91KB
Sample

240906-1rqlpszcmq
MD5

e66eae5b935cf4a3c42335f9040503a0
SHA1

5fb71d5937cb91a929f472a4c391c2293e65cdef
SHA256

cba35e4f68fd22c2936ab8e0d5738ace70c5551a3d0268ca6712ed4baf20a7ef
SHA512

e48b91a1d189a3da996fd225f56b7b298afb82116e9dd1d783e4c69cf5c41a8a677cba30030a4d3915a8fdab99e664f0e109007664eccbd9127da4e0b3b0dfab
SSDEEP

1536:dfaBy4xpaNSxkqZGsGD5fgPnJqwYsnCDdzZLNhKRTZ43uOVXQyYr/viVMi:VaBy4xpaNSBq9YnJNTCtZb8G3uAAyo/W

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e66eae5b935cf4a3c42335f9040503a0N.exe
- Size
  
  91KB
- MD5
  
  e66eae5b935cf4a3c42335f9040503a0
- SHA1
  
  5fb71d5937cb91a929f472a4c391c2293e65cdef
- SHA256
  
  cba35e4f68fd22c2936ab8e0d5738ace70c5551a3d0268ca6712ed4baf20a7ef
- SHA512
  
  e48b91a1d189a3da996fd225f56b7b298afb82116e9dd1d783e4c69cf5c41a8a677cba30030a4d3915a8fdab99e664f0e109007664eccbd9127da4e0b3b0dfab
- SSDEEP
  
  1536:dfaBy4xpaNSxkqZGsGD5fgPnJqwYsnCDdzZLNhKRTZ43uOVXQyYr/viVMi:VaBy4xpaNSBq9YnJNTCtZb8G3uAAyo/W
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence