de1356e08de578e8a64defc041bfc2e5c397f5c8ba19c67a32439ea15a9407c7 | Triage

Submit
Reports

Overview

overview

Static

static

3

de1356e08d...c7.exe

windows7-x64

de1356e08d...c7.exe

windows10-2004-x64

Sharing

General

Target

de1356e08de578e8a64defc041bfc2e5c397f5c8ba19c67a32439ea15a9407c7
Size

1.7MB
Sample

240701-d6plmayckn
MD5

f8e41fe4a3a944b44834164c555c92a3
SHA1

31f35711b0f56149e0ed04aa623ca63b5cfdb4ae
SHA256

de1356e08de578e8a64defc041bfc2e5c397f5c8ba19c67a32439ea15a9407c7
SHA512

a5f281912d99e37d4f4db0a2f92e14e793d90d21455954b43f105158319ccb4d36ab2bdb7d512da4ec2086ad0ddb837b9f06e674a036ae9906a1fee41b761ede
SSDEEP

49152:hix7/ix7yix7/ix7Xcix7/ix7yix7/ix7:hU/UyU/UXcU/UyU/U

Score

10^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

de1356e08de578e8a64defc041bfc2e5c397f5c8ba19c67a32439ea15a9407c7.exe

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

de1356e08de578e8a64defc041bfc2e5c397f5c8ba19c67a32439ea15a9407c7.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  de1356e08de578e8a64defc041bfc2e5c397f5c8ba19c67a32439ea15a9407c7
- Size
  
  1.7MB
- MD5
  
  f8e41fe4a3a944b44834164c555c92a3
- SHA1
  
  31f35711b0f56149e0ed04aa623ca63b5cfdb4ae
- SHA256
  
  de1356e08de578e8a64defc041bfc2e5c397f5c8ba19c67a32439ea15a9407c7
- SHA512
  
  a5f281912d99e37d4f4db0a2f92e14e793d90d21455954b43f105158319ccb4d36ab2bdb7d512da4ec2086ad0ddb837b9f06e674a036ae9906a1fee41b761ede
- SSDEEP
  
  49152:hix7/ix7yix7/ix7Xcix7/ix7yix7/ix7:hU/UyU/UXcU/UyU/U
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy