25c1bea11eb15df565e8d402388d3957a38d817ff951f8918a50c6a73b814d1c | Triage

Sharing

General

Target

25c1bea11eb15df565e8d402388d3957a38d817ff951f8918a50c6a73b814d1c.exe
Size

64KB
Sample

240908-b3lpfszcrc
MD5

b80dd3e97f2765347d9787a46dd523e9
SHA1

77da6f44cfbde6e40bb5fc6708a1eeb8b9008329
SHA256

25c1bea11eb15df565e8d402388d3957a38d817ff951f8918a50c6a73b814d1c
SHA512

cb16d636afa0289645af12d4a04afeab8e00e2ed23ea2a44c6413c9fe0875fa745dc2446b71e5590c9ba63acf9f4c4ad971c82cc51e05fc8120c769c35e07739
SSDEEP

768:POnFOxxHkDtvLVIExXaQH9Sq6P46bJGjD/KEBBlNiD2p/1H5vxXdnh0Usb0DWBi:0FyxceNlIl82LBzrDWBi

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  25c1bea11eb15df565e8d402388d3957a38d817ff951f8918a50c6a73b814d1c.exe
- Size
  
  64KB
- MD5
  
  b80dd3e97f2765347d9787a46dd523e9
- SHA1
  
  77da6f44cfbde6e40bb5fc6708a1eeb8b9008329
- SHA256
  
  25c1bea11eb15df565e8d402388d3957a38d817ff951f8918a50c6a73b814d1c
- SHA512
  
  cb16d636afa0289645af12d4a04afeab8e00e2ed23ea2a44c6413c9fe0875fa745dc2446b71e5590c9ba63acf9f4c4ad971c82cc51e05fc8120c769c35e07739
- SSDEEP
  
  768:POnFOxxHkDtvLVIExXaQH9Sq6P46bJGjD/KEBBlNiD2p/1H5vxXdnh0Usb0DWBi:0FyxceNlIl82LBzrDWBi
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence