b5bbc2d132d47ddaacb4d134a80865a0c2509f1e51ea0e37060a1bec43e44474 | Triage

Sharing

General

Target

b084a8839a20a728444ba5002e9a5ad0N.exe
Size

359KB
Sample

240906-wbwqkazcmn
MD5

b084a8839a20a728444ba5002e9a5ad0
SHA1

3245b93a36ab892d293937e7e40ed32ef1645c4e
SHA256

b5bbc2d132d47ddaacb4d134a80865a0c2509f1e51ea0e37060a1bec43e44474
SHA512

56dbe3ef6bf4e7b86c0881ce824a9efb04351b3851a13363324ccda020730fef74990cd0cec65df6fa0073eff99cf9ce4781ceef396e802f1c3d9ca52f131f09
SSDEEP

6144:FHrYj/nOqnWROj/WgyDg2eyYVrOigcC6oQ6+EcC6oQ6+YahBQyiTACPTRN6+Yahm:F5RAADh2K9E6n9E6vah6yiMCPTRN6vaU

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b084a8839a20a728444ba5002e9a5ad0N.exe
- Size
  
  359KB
- MD5
  
  b084a8839a20a728444ba5002e9a5ad0
- SHA1
  
  3245b93a36ab892d293937e7e40ed32ef1645c4e
- SHA256
  
  b5bbc2d132d47ddaacb4d134a80865a0c2509f1e51ea0e37060a1bec43e44474
- SHA512
  
  56dbe3ef6bf4e7b86c0881ce824a9efb04351b3851a13363324ccda020730fef74990cd0cec65df6fa0073eff99cf9ce4781ceef396e802f1c3d9ca52f131f09
- SSDEEP
  
  6144:FHrYj/nOqnWROj/WgyDg2eyYVrOigcC6oQ6+EcC6oQ6+YahBQyiTACPTRN6+Yahm:F5RAADh2K9E6n9E6vah6yiMCPTRN6vaU
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence