f904725154654e3028e1301bfaed3e24764407ed7adf17e8e0907c5575248145 | Triage

Sharing

General

Target

c5112b0b7594e73cd7ae9bd87c1f8eb0N.exe
Size

80KB
Sample

240907-jzt6estdmk
MD5

c5112b0b7594e73cd7ae9bd87c1f8eb0
SHA1

f0b12cbc79853e492313b4dd38d1368ec7ee127b
SHA256

f904725154654e3028e1301bfaed3e24764407ed7adf17e8e0907c5575248145
SHA512

d3b2b2316a5bee15e4292cf41d1bc60244ac09cbadb1de5e9a86d6e66ff3337ca6f945276af02c7622f585148848c89b915f805abbb82b7c0b9a41aa9784381a
SSDEEP

768:0tNyzK4GN+p/Q1gwFfbB2qBNDrYt5g4HWU9N1UkMdz8VEBXk9zZC2p/1H5pVrXdl:QWK4GImFrS5HEQE5d2Ltpwfi+TjRC/6y

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c5112b0b7594e73cd7ae9bd87c1f8eb0N.exe
- Size
  
  80KB
- MD5
  
  c5112b0b7594e73cd7ae9bd87c1f8eb0
- SHA1
  
  f0b12cbc79853e492313b4dd38d1368ec7ee127b
- SHA256
  
  f904725154654e3028e1301bfaed3e24764407ed7adf17e8e0907c5575248145
- SHA512
  
  d3b2b2316a5bee15e4292cf41d1bc60244ac09cbadb1de5e9a86d6e66ff3337ca6f945276af02c7622f585148848c89b915f805abbb82b7c0b9a41aa9784381a
- SSDEEP
  
  768:0tNyzK4GN+p/Q1gwFfbB2qBNDrYt5g4HWU9N1UkMdz8VEBXk9zZC2p/1H5pVrXdl:QWK4GImFrS5HEQE5d2Ltpwfi+TjRC/6y
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence