e114263449c52b61ced33e3639874ab18eac004cc862595ea1d90513dd7f3dcb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e114263449c52b61ced33e3639874ab18eac004cc862595ea1d90513dd7f3dcb
Size

9.2MB
Sample

221107-gtfdzaeaam
MD5

0dd652006be8ced8fc7bc5091b56cfdd
SHA1

d39f997ccd6331974547093fdbb6af6854cf2982
SHA256

e114263449c52b61ced33e3639874ab18eac004cc862595ea1d90513dd7f3dcb
SHA512

c9e9326a98c59d0bb93d8eb23cc9faa09121bc62991a69575f2b25792cdb94c8ed22450abf8f4d7604ff43e74141c75089589ede99c183df9767dddcaaba24e4
SSDEEP

384:rhcC2/zZw6bv+T+vgmRWt5NXjfVLZmxEY4DV:rhVg1bbvDRWt5NTfRgx6DV

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e114263449c52b61ced33e3639874ab18eac004cc862595ea1d90513dd7f3dcb
- Size
  
  9.2MB
- MD5
  
  0dd652006be8ced8fc7bc5091b56cfdd
- SHA1
  
  d39f997ccd6331974547093fdbb6af6854cf2982
- SHA256
  
  e114263449c52b61ced33e3639874ab18eac004cc862595ea1d90513dd7f3dcb
- SHA512
  
  c9e9326a98c59d0bb93d8eb23cc9faa09121bc62991a69575f2b25792cdb94c8ed22450abf8f4d7604ff43e74141c75089589ede99c183df9767dddcaaba24e4
- SSDEEP
  
  384:rhcC2/zZw6bv+T+vgmRWt5NXjfVLZmxEY4DV:rhVg1bbvDRWt5NTfRgx6DV
Score

8^/10

persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2