289e92222ae54fc35e84b49c4f6c17b0901266ae42231e2fcbe2c40868e5b126 | Triage

Sharing

General

Target

e159b35f578235fa3002d3239bcb2f65.exe
Size

304KB
Sample

231230-xl9wlsbhap
MD5

e159b35f578235fa3002d3239bcb2f65
SHA1

3e1b1d706db3f31fac2ca714695a2ff969b58a1c
SHA256

289e92222ae54fc35e84b49c4f6c17b0901266ae42231e2fcbe2c40868e5b126
SHA512

04f720363371352f0480bd77f89aab02d56c2b2da84c205132a2462570d1c0dcc1078f69fdbe2ad1e53478674d38ce1862a767f3a86a20dcc2f53137802edc58
SSDEEP

6144:CYc1klpuN66gjMwGsmLrZNs/VKi/MwGsmLr5+NodY:01dXgjMmmpNs/VXMmmgJ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e159b35f578235fa3002d3239bcb2f65.exe
- Size
  
  304KB
- MD5
  
  e159b35f578235fa3002d3239bcb2f65
- SHA1
  
  3e1b1d706db3f31fac2ca714695a2ff969b58a1c
- SHA256
  
  289e92222ae54fc35e84b49c4f6c17b0901266ae42231e2fcbe2c40868e5b126
- SHA512
  
  04f720363371352f0480bd77f89aab02d56c2b2da84c205132a2462570d1c0dcc1078f69fdbe2ad1e53478674d38ce1862a767f3a86a20dcc2f53137802edc58
- SSDEEP
  
  6144:CYc1klpuN66gjMwGsmLrZNs/VKi/MwGsmLr5+NodY:01dXgjMmmpNs/VXMmmgJ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2