0135f767ad0daf98ef4bdfe1a57bb239a0bc8a87f9ae7a6d47103e2473141dc0 | Triage

Sharing

General

Target

e1357f4aa3c543af7852757a017f5fd1.exe
Size

361KB
Sample

231230-xhdc8sdef3
MD5

e1357f4aa3c543af7852757a017f5fd1
SHA1

71777fe502d0cbf7c8a066e2ba36e3ae8bc01788
SHA256

0135f767ad0daf98ef4bdfe1a57bb239a0bc8a87f9ae7a6d47103e2473141dc0
SHA512

4f58cc6612545a7da730753914c61c3a99e327503e6d05191fa8fc87c48c7d5cb7f1e53af257dabf720794d50e9529e7f8c7bdbdab2ba131b7f89ff9193aa0d5
SSDEEP

6144:nwb79mhQsVQ///NR5fLvQ///NREQ///NR5fLYG3eujPQ///NR5f:wb72w/Nq/NZ/NcZ7/N

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e1357f4aa3c543af7852757a017f5fd1.exe
- Size
  
  361KB
- MD5
  
  e1357f4aa3c543af7852757a017f5fd1
- SHA1
  
  71777fe502d0cbf7c8a066e2ba36e3ae8bc01788
- SHA256
  
  0135f767ad0daf98ef4bdfe1a57bb239a0bc8a87f9ae7a6d47103e2473141dc0
- SHA512
  
  4f58cc6612545a7da730753914c61c3a99e327503e6d05191fa8fc87c48c7d5cb7f1e53af257dabf720794d50e9529e7f8c7bdbdab2ba131b7f89ff9193aa0d5
- SSDEEP
  
  6144:nwb79mhQsVQ///NR5fLvQ///NREQ///NR5fLYG3eujPQ///NR5f:wb72w/Nq/NZ/NcZ7/N
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2