504215f9964926425c9efe5b45eab992efffe5424fa863e93f95f503ed2f0c8e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45e78c88e8be01f04370a76b7ca47a00N
Size

74KB
Sample

240915-em2bravenq
MD5

45e78c88e8be01f04370a76b7ca47a00
SHA1

b147f425e4b21f49285564a2d63c7a402bfbf10e
SHA256

504215f9964926425c9efe5b45eab992efffe5424fa863e93f95f503ed2f0c8e
SHA512

c8e71aa353f61e51fe79fc4ba8d392cd354e59c7f11f18617d62c49ba3a3019207b071a1a59308ef574b053a8cb658703a74d93caf82d3b4e3e48a424f411af3
SSDEEP

1536:AFRUaukmXPJhonsbK6fkBaiiCNW/puMl9sE+7oKT2RetH:AEkQonsHR3/puMfsE+7oKVH

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  45e78c88e8be01f04370a76b7ca47a00N
- Size
  
  74KB
- MD5
  
  45e78c88e8be01f04370a76b7ca47a00
- SHA1
  
  b147f425e4b21f49285564a2d63c7a402bfbf10e
- SHA256
  
  504215f9964926425c9efe5b45eab992efffe5424fa863e93f95f503ed2f0c8e
- SHA512
  
  c8e71aa353f61e51fe79fc4ba8d392cd354e59c7f11f18617d62c49ba3a3019207b071a1a59308ef574b053a8cb658703a74d93caf82d3b4e3e48a424f411af3
- SSDEEP
  
  1536:AFRUaukmXPJhonsbK6fkBaiiCNW/puMl9sE+7oKT2RetH:AEkQonsHR3/puMfsE+7oKVH
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence