7031e3bf903d2cef107a2fe2fe1c9f34ad3a45a2d558612dd7db0ba4faabfaeb | Triage

Sharing

General

Target

e1dc043b1e7887a0cc2183a320620ff7.exe
Size

462KB
Sample

231230-xka1wsbefr
MD5

e1dc043b1e7887a0cc2183a320620ff7
SHA1

c76aa67b5eac596ab460e7f9320be71d54641bc2
SHA256

7031e3bf903d2cef107a2fe2fe1c9f34ad3a45a2d558612dd7db0ba4faabfaeb
SHA512

61e4149150a7f4a4727c9694762e83eaf717bf349ec18b5bba24fbdaa8495211c05f894f966cc23fa8147753790ec8e6cc26a492ae1067b378662e6029b20761
SSDEEP

6144:TWWXcFQIP/9w6/eKxSlKKZ74ueKxff0qjwszeX9z6/ojwszeXmOEgHixuqjwsze2:T7XcFQdlr54ujjgj+HiPj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e1dc043b1e7887a0cc2183a320620ff7.exe
- Size
  
  462KB
- MD5
  
  e1dc043b1e7887a0cc2183a320620ff7
- SHA1
  
  c76aa67b5eac596ab460e7f9320be71d54641bc2
- SHA256
  
  7031e3bf903d2cef107a2fe2fe1c9f34ad3a45a2d558612dd7db0ba4faabfaeb
- SHA512
  
  61e4149150a7f4a4727c9694762e83eaf717bf349ec18b5bba24fbdaa8495211c05f894f966cc23fa8147753790ec8e6cc26a492ae1067b378662e6029b20761
- SSDEEP
  
  6144:TWWXcFQIP/9w6/eKxSlKKZ74ueKxff0qjwszeX9z6/ojwszeXmOEgHixuqjwsze2:T7XcFQdlr54ujjgj+HiPj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2