e49a88517cb48d07188106eae65866ca79c60f96a25015f7eab710937ee67674 | Triage

Sharing

General

Target

e49a88517cb48d07188106eae65866ca79c60f96a25015f7eab710937ee67674
Size

11KB
Sample

221125-lbz3wafg89
MD5

ef81307c2dc2a11d430ea4919a134045
SHA1

a681f960bdaebcb63220ed4f61416a8618f7be28
SHA256

e49a88517cb48d07188106eae65866ca79c60f96a25015f7eab710937ee67674
SHA512

025d90379c9aa0735bd55d26155f1111bd0ac0618b646400a1235e63a01882c819b4fa1fb8be945c219c3e5cfa6a96ecb1ff7a96c9f3f0f0e8db8cf9b1b3a779
SSDEEP

192:3IzV44aFXk3u1a7qSvOTSX+WRdRvcqsbetd06v5FjkGg:3IzV44oXk3ugWSEpiTEVk06vp

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e49a88517cb48d07188106eae65866ca79c60f96a25015f7eab710937ee67674
- Size
  
  11KB
- MD5
  
  ef81307c2dc2a11d430ea4919a134045
- SHA1
  
  a681f960bdaebcb63220ed4f61416a8618f7be28
- SHA256
  
  e49a88517cb48d07188106eae65866ca79c60f96a25015f7eab710937ee67674
- SHA512
  
  025d90379c9aa0735bd55d26155f1111bd0ac0618b646400a1235e63a01882c819b4fa1fb8be945c219c3e5cfa6a96ecb1ff7a96c9f3f0f0e8db8cf9b1b3a779
- SSDEEP
  
  192:3IzV44aFXk3u1a7qSvOTSX+WRdRvcqsbetd06v5FjkGg:3IzV44oXk3ugWSEpiTEVk06vp
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2