e57dda12b704498e73434af7592e6d57b6581f0ee12ada3297c93f763ef2c798 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e57dda12b704498e73434af7592e6d57b6581f0ee12ada3297c93f763ef2c798
Size

45KB
Sample

221204-lqeqgsgc28
MD5

8a62ac07ebcd1654c7d81d09441613a5
SHA1

50fa6b57f8ab7ab4ee80625b92f8f6766e610606
SHA256

e57dda12b704498e73434af7592e6d57b6581f0ee12ada3297c93f763ef2c798
SHA512

987a409c5b18b046668ad12a97e6c7524b99cbe4f3899de2d4155ce173fc9b63d2f5e8f8be590bd6d0ab280ccd2bbf29e3bd9e541613c3322836ff13caae4e85
SSDEEP

768:8G+1F/LD8JA05+6yz/NLyamAL47LttP+RHYnKUntA:kF/LD8JAHTsXfMJSt

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  e57dda12b704498e73434af7592e6d57b6581f0ee12ada3297c93f763ef2c798
- Size
  
  45KB
- MD5
  
  8a62ac07ebcd1654c7d81d09441613a5
- SHA1
  
  50fa6b57f8ab7ab4ee80625b92f8f6766e610606
- SHA256
  
  e57dda12b704498e73434af7592e6d57b6581f0ee12ada3297c93f763ef2c798
- SHA512
  
  987a409c5b18b046668ad12a97e6c7524b99cbe4f3899de2d4155ce173fc9b63d2f5e8f8be590bd6d0ab280ccd2bbf29e3bd9e541613c3322836ff13caae4e85
- SSDEEP
  
  768:8G+1F/LD8JA05+6yz/NLyamAL47LttP+RHYnKUntA:kF/LD8JAHTsXfMJSt
Score

10^/10

evasion persistence
- Modifies firewall policy service
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence