e754679940633ae8cb3dc105ea1b495051df084f930a448878cb5a95e30e6134 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e754679940633ae8cb3dc105ea1b495051df084f930a448878cb5a95e30e6134
Size

515KB
Sample

221029-fqlwxacghl
MD5

ef68bc4c4b86779830dd80479f4cefed
SHA1

3d69a2c507cf3ec9a7c48311b00d8eba29a5341f
SHA256

e754679940633ae8cb3dc105ea1b495051df084f930a448878cb5a95e30e6134
SHA512

18dfab9aa532d9a1df355464e0b9792568e3958caf9152eaa1a499a8d179efd3259f5f3bf5f44178300bb2a630174035dd85f533e79c1ba6400b372963e38f2c
SSDEEP

12288:YGur/kGpUs6onzbkGqkC0HlnnXyulYV7uikFg:YGur/dx6onHTFCGXyu2lubg

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  e754679940633ae8cb3dc105ea1b495051df084f930a448878cb5a95e30e6134
- Size
  
  515KB
- MD5
  
  ef68bc4c4b86779830dd80479f4cefed
- SHA1
  
  3d69a2c507cf3ec9a7c48311b00d8eba29a5341f
- SHA256
  
  e754679940633ae8cb3dc105ea1b495051df084f930a448878cb5a95e30e6134
- SHA512
  
  18dfab9aa532d9a1df355464e0b9792568e3958caf9152eaa1a499a8d179efd3259f5f3bf5f44178300bb2a630174035dd85f533e79c1ba6400b372963e38f2c
- SSDEEP
  
  12288:YGur/kGpUs6onzbkGqkC0HlnnXyulYV7uikFg:YGur/dx6onHTFCGXyu2lubg
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2