fc3ac6ef859c985ac66b313de1aab369d519bf1242e9843cd0c29ed5ccd2d661 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02e544e6f4ebf0ab463759377b230666.exe
Size

391KB
Sample

240101-zggelsacal
MD5

02e544e6f4ebf0ab463759377b230666
SHA1

bbf437f583ff391605f0c237c1b44f2415c17a67
SHA256

fc3ac6ef859c985ac66b313de1aab369d519bf1242e9843cd0c29ed5ccd2d661
SHA512

eec3dc4d992952b3781e4b09746ee4de77b665bb55fbbf64136c8829bc6fdb0113dd1fbb71ad42e7dff4909dcb4c4875f310a83369bcd127846562f847a011f9
SSDEEP

6144:V5Egou2VLVuIaAfbAfNtTAfMAfFAfNPUmKyIxLfYeOO9UmKyIxL:cBu4mNtuhUNP3cOK3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  02e544e6f4ebf0ab463759377b230666.exe
- Size
  
  391KB
- MD5
  
  02e544e6f4ebf0ab463759377b230666
- SHA1
  
  bbf437f583ff391605f0c237c1b44f2415c17a67
- SHA256
  
  fc3ac6ef859c985ac66b313de1aab369d519bf1242e9843cd0c29ed5ccd2d661
- SHA512
  
  eec3dc4d992952b3781e4b09746ee4de77b665bb55fbbf64136c8829bc6fdb0113dd1fbb71ad42e7dff4909dcb4c4875f310a83369bcd127846562f847a011f9
- SSDEEP
  
  6144:V5Egou2VLVuIaAfbAfNtTAfMAfFAfNPUmKyIxLfYeOO9UmKyIxL:cBu4mNtuhUNP3cOK3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2