3b7b6e72d91889b36939225ec27c9e0fb268153b3ea31ea091eb2b439f1adb73 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c11aefa58d566c9036f40bf2b28ef40N.exe
Size

96KB
Sample

240906-jra3ksvflh
MD5

7c11aefa58d566c9036f40bf2b28ef40
SHA1

163c5a538cb013592b824966c83efa56d128af22
SHA256

3b7b6e72d91889b36939225ec27c9e0fb268153b3ea31ea091eb2b439f1adb73
SHA512

9188a745f88f08d76465ab5f316e76378492b44f8a55a90a61fca58ed29139dad668fee3d2724510e40968178a2ddb190db66c5971a8be1935b42e897fd56b2a
SSDEEP

1536:75YSqiZvdHhHxM2fR5fGNxBwylnPCs/CBrufnHfu2tv74S7V+5pUMv84WMRw8Dkb:75YSNTHhHxMCQRjnPCsCBqf2iT4Sp+7I

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  7c11aefa58d566c9036f40bf2b28ef40N.exe
- Size
  
  96KB
- MD5
  
  7c11aefa58d566c9036f40bf2b28ef40
- SHA1
  
  163c5a538cb013592b824966c83efa56d128af22
- SHA256
  
  3b7b6e72d91889b36939225ec27c9e0fb268153b3ea31ea091eb2b439f1adb73
- SHA512
  
  9188a745f88f08d76465ab5f316e76378492b44f8a55a90a61fca58ed29139dad668fee3d2724510e40968178a2ddb190db66c5971a8be1935b42e897fd56b2a
- SSDEEP
  
  1536:75YSqiZvdHhHxM2fR5fGNxBwylnPCs/CBrufnHfu2tv74S7V+5pUMv84WMRw8Dkb:75YSNTHhHxMCQRjnPCsCBqf2iT4Sp+7I
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence