02be93341b19211a444025e16ef2f4f7b92734637d7f89d18554c90998b081ec | Triage

Sharing

General

Target

02be93341b19211a444025e16ef2f4f7b92734637d7f89d18554c90998b081ec
Size

80KB
Sample

240907-wr28aaxbnq
MD5

cb27767f08942dfae05904a98269bc8e
SHA1

8dc1c09f6342f0f77e29422ccc3ab68c56561b4c
SHA256

02be93341b19211a444025e16ef2f4f7b92734637d7f89d18554c90998b081ec
SHA512

53da16d46e1706e913ed193edf8f10c7e7164013db2edfab1b1264e70793a4e2e1f91d5c3d3290cea6334eecdaa9b3e035a3720339bc29bbf530d293fb05c568
SSDEEP

1536:qszNCjsHQC6EuSHKCw0fzDfWqdMVrlEFtyb7IYOOqw4Tv:qp4HQC6lh0fzTWqAhELy1MTTv

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  02be93341b19211a444025e16ef2f4f7b92734637d7f89d18554c90998b081ec
- Size
  
  80KB
- MD5
  
  cb27767f08942dfae05904a98269bc8e
- SHA1
  
  8dc1c09f6342f0f77e29422ccc3ab68c56561b4c
- SHA256
  
  02be93341b19211a444025e16ef2f4f7b92734637d7f89d18554c90998b081ec
- SHA512
  
  53da16d46e1706e913ed193edf8f10c7e7164013db2edfab1b1264e70793a4e2e1f91d5c3d3290cea6334eecdaa9b3e035a3720339bc29bbf530d293fb05c568
- SSDEEP
  
  1536:qszNCjsHQC6EuSHKCw0fzDfWqdMVrlEFtyb7IYOOqw4Tv:qp4HQC6lh0fzTWqAhELy1MTTv
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence