e731a02da1112cb7f31f3e0e95c123d4178e529af1abee6e5dcf9f9c1d8011e6 | Triage

Sharing

General

Target

a7bb5d5877e7886708d4bc6ef6eebdd0N.exe
Size

96KB
Sample

240907-et9ayavcmd
MD5

a7bb5d5877e7886708d4bc6ef6eebdd0
SHA1

95a14b549152a673bef53ae7ee5f5a385ee6e3b3
SHA256

e731a02da1112cb7f31f3e0e95c123d4178e529af1abee6e5dcf9f9c1d8011e6
SHA512

65172a6b3500cc49cfa3b299c0cad3688657f5e661664630084b01f074ff8835557152935aca75ae1bdb9c077305522510e4a4d44a01a4281a143c0baf50bc59
SSDEEP

1536:o4lHl2gfY+nfq1n1AGw1uU8mANG/US/8cQ2nLCwCCq8+2g2po00N6MFFfUN1Avh9:JlHl2gfTnf41AT1uUIG/U4CEq8+n2pdm

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a7bb5d5877e7886708d4bc6ef6eebdd0N.exe
- Size
  
  96KB
- MD5
  
  a7bb5d5877e7886708d4bc6ef6eebdd0
- SHA1
  
  95a14b549152a673bef53ae7ee5f5a385ee6e3b3
- SHA256
  
  e731a02da1112cb7f31f3e0e95c123d4178e529af1abee6e5dcf9f9c1d8011e6
- SHA512
  
  65172a6b3500cc49cfa3b299c0cad3688657f5e661664630084b01f074ff8835557152935aca75ae1bdb9c077305522510e4a4d44a01a4281a143c0baf50bc59
- SSDEEP
  
  1536:o4lHl2gfY+nfq1n1AGw1uU8mANG/US/8cQ2nLCwCCq8+2g2po00N6MFFfUN1Avh9:JlHl2gfTnf41AT1uUIG/U4CEq8+n2pdm
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence