e1e8e2e91e375185a0595e8ba2bae1f8498a132e5d7186ae3396e19ff4aefab8 | Triage

Sharing

General

Target

e1e8e2e91e375185a0595e8ba2bae1f8498a132e5d7186ae3396e19ff4aefab8
Size

762KB
Sample

221204-b6wntsfd27
MD5

3b57cc4e491168a4fa083dea9ad65b57
SHA1

3898021a8302a0f58a149907233dfbdb4dd92a11
SHA256

e1e8e2e91e375185a0595e8ba2bae1f8498a132e5d7186ae3396e19ff4aefab8
SHA512

ff38cd3c38578b8003651973d38547af5abe18c3ce074dce616b86317c20f29fd5c69c5466bf4cac86fb8e938925b3bb2a710fd091cf64fc3115da4f6583e169
SSDEEP

12288:rG6lrpOjWtGNgDUiWqWNKDrt25G6lrpOjWtGNgDUiWqWNKDrt2x:KcOjWcCDUiWBwrk8cOjWcCDUiWBwrkx

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e1e8e2e91e375185a0595e8ba2bae1f8498a132e5d7186ae3396e19ff4aefab8
- Size
  
  762KB
- MD5
  
  3b57cc4e491168a4fa083dea9ad65b57
- SHA1
  
  3898021a8302a0f58a149907233dfbdb4dd92a11
- SHA256
  
  e1e8e2e91e375185a0595e8ba2bae1f8498a132e5d7186ae3396e19ff4aefab8
- SHA512
  
  ff38cd3c38578b8003651973d38547af5abe18c3ce074dce616b86317c20f29fd5c69c5466bf4cac86fb8e938925b3bb2a710fd091cf64fc3115da4f6583e169
- SSDEEP
  
  12288:rG6lrpOjWtGNgDUiWqWNKDrt25G6lrpOjWtGNgDUiWqWNKDrt2x:KcOjWcCDUiWBwrk8cOjWcCDUiWBwrkx
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2