2df4dcf67161d1a5ba4a95e5c8de2a38afeef53daaa6c04bee0d8056d4e138a2 | Triage

Sharing

General

Target

2df4dcf67161d1a5ba4a95e5c8de2a38afeef53daaa6c04bee0d8056d4e138a2
Size

932KB
Sample

221107-ehrlraaaam
MD5

0f2cf065ccb74f29e76de9ad23991190
SHA1

4e90ed38e3b05ff1a666ae75e9ab16db5a11c4d7
SHA256

2df4dcf67161d1a5ba4a95e5c8de2a38afeef53daaa6c04bee0d8056d4e138a2
SHA512

495a9cbd82d2d8fcda05c330c3959e08ed9917263c4c25941541dfa79ab5840f580e2a7331293cbaa0a9e991c83e01f5b2501e3790585a5ef4496076d00641de
SSDEEP

24576:P1/aGLDCM4D8ayGMZo8/cpnCc63AzRTJUpYw:gD8ayGMZoL2QPUpV

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2df4dcf67161d1a5ba4a95e5c8de2a38afeef53daaa6c04bee0d8056d4e138a2
- Size
  
  932KB
- MD5
  
  0f2cf065ccb74f29e76de9ad23991190
- SHA1
  
  4e90ed38e3b05ff1a666ae75e9ab16db5a11c4d7
- SHA256
  
  2df4dcf67161d1a5ba4a95e5c8de2a38afeef53daaa6c04bee0d8056d4e138a2
- SHA512
  
  495a9cbd82d2d8fcda05c330c3959e08ed9917263c4c25941541dfa79ab5840f580e2a7331293cbaa0a9e991c83e01f5b2501e3790585a5ef4496076d00641de
- SSDEEP
  
  24576:P1/aGLDCM4D8ayGMZo8/cpnCc63AzRTJUpYw:gD8ayGMZoL2QPUpV
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2