e11150f2cb67ab96df0aac1fa168aa20caab4c9fc7dc218c154b1be76b1eaaa9 | Triage

Sharing

General

Target

e11150f2cb67ab96df0aac1fa168aa20caab4c9fc7dc218c154b1be76b1eaaa9
Size

147KB
Sample

221123-z9732ahh3z
MD5

42e03fc8558e51059e35039524b3e3b0
SHA1

df340fa089ea208ac010f52172c0bc162d0a8f42
SHA256

e11150f2cb67ab96df0aac1fa168aa20caab4c9fc7dc218c154b1be76b1eaaa9
SHA512

c5eb85a7f300e89ab6f9d7ccdd95bebe4e9efe5f1a58f6863ca3db81ec79aeda06657013c666652958073bb4221e458d4581d9b003d0ee0a6b8b46941e1b61c9
SSDEEP

3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08MoepTIwzs:aM7jJlRexYTHYZMpTHzs

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  e11150f2cb67ab96df0aac1fa168aa20caab4c9fc7dc218c154b1be76b1eaaa9
- Size
  
  147KB
- MD5
  
  42e03fc8558e51059e35039524b3e3b0
- SHA1
  
  df340fa089ea208ac010f52172c0bc162d0a8f42
- SHA256
  
  e11150f2cb67ab96df0aac1fa168aa20caab4c9fc7dc218c154b1be76b1eaaa9
- SHA512
  
  c5eb85a7f300e89ab6f9d7ccdd95bebe4e9efe5f1a58f6863ca3db81ec79aeda06657013c666652958073bb4221e458d4581d9b003d0ee0a6b8b46941e1b61c9
- SSDEEP
  
  3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08MoepTIwzs:aM7jJlRexYTHYZMpTHzs
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2