e62280d56357b9fb444623f223d67f4fae6124fffea2a77e96a19bb363886356 | Triage

Sharing

General

Target

01e8ea9dc09bf3bafa54293587b66504
Size

448KB
Sample

231229-yaxycacdak
MD5

01e8ea9dc09bf3bafa54293587b66504
SHA1

04edaff2669f38184ed81478993ec76476d44895
SHA256

e62280d56357b9fb444623f223d67f4fae6124fffea2a77e96a19bb363886356
SHA512

cc55a744d8a0c495977c3e21d333548cbd7f54adfd61e04f2eb2e6cc10d9a99b4b7c923a9bf46df42162f6740acfb623bee133887d1921551435333642b0ea8b
SSDEEP

6144:T2ygO7T6DU6EHPQ///NR5fLYG3eujPQ///NR5fTvpBtsE5PQ///NR5fLYG3eujPY:s/NcZ7/Nbvjuj/NcZ7/N

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  01e8ea9dc09bf3bafa54293587b66504
- Size
  
  448KB
- MD5
  
  01e8ea9dc09bf3bafa54293587b66504
- SHA1
  
  04edaff2669f38184ed81478993ec76476d44895
- SHA256
  
  e62280d56357b9fb444623f223d67f4fae6124fffea2a77e96a19bb363886356
- SHA512
  
  cc55a744d8a0c495977c3e21d333548cbd7f54adfd61e04f2eb2e6cc10d9a99b4b7c923a9bf46df42162f6740acfb623bee133887d1921551435333642b0ea8b
- SSDEEP
  
  6144:T2ygO7T6DU6EHPQ///NR5fLYG3eujPQ///NR5fTvpBtsE5PQ///NR5fLYG3eujPY:s/NcZ7/Nbvjuj/NcZ7/N
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2