e2fb74dcb85391236f1d6da1838cef5f7e4588f83f17a8ceae9d504d1a28dbf7 | Triage

Sharing

General

Target

e2fb74dcb85391236f1d6da1838cef5f7e4588f83f17a8ceae9d504d1a28dbf7
Size

269KB
Sample

221123-z58h1aee79
MD5

4d1bd75b6bed2a68abad0f27cea1f13d
SHA1

0d2a50d2cab028c825e46d11e4e00b794360c5c2
SHA256

e2fb74dcb85391236f1d6da1838cef5f7e4588f83f17a8ceae9d504d1a28dbf7
SHA512

c1d2386631abe3c65135ab7e2cc13e8e660f20d5b1b2220eb35727a42c7b80db69b178f10021e43f952b6a67796db52e7426ac8548d5395431e36b2bd080e349
SSDEEP

6144:NrTcoj6kLCQNbPTIyOiMg9nVzXZcVU8gVBKIlY:Bgoj6idPTg5GVzJcpIlY

Score

9^/10

persistence

Malware Config

Targets

- Target
  
  e2fb74dcb85391236f1d6da1838cef5f7e4588f83f17a8ceae9d504d1a28dbf7
- Size
  
  269KB
- MD5
  
  4d1bd75b6bed2a68abad0f27cea1f13d
- SHA1
  
  0d2a50d2cab028c825e46d11e4e00b794360c5c2
- SHA256
  
  e2fb74dcb85391236f1d6da1838cef5f7e4588f83f17a8ceae9d504d1a28dbf7
- SHA512
  
  c1d2386631abe3c65135ab7e2cc13e8e660f20d5b1b2220eb35727a42c7b80db69b178f10021e43f952b6a67796db52e7426ac8548d5395431e36b2bd080e349
- SSDEEP
  
  6144:NrTcoj6kLCQNbPTIyOiMg9nVzXZcVU8gVBKIlY:Bgoj6idPTg5GVzJcpIlY
Score

9^/10

persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2