ef4b95bd5d62d42053648cd7143617cfb5596767b417560bcf0f77780c3512ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

511e23f355c0733204418b1422303c28.exe
Size

252KB
Sample

240110-xw1exsecak
MD5

511e23f355c0733204418b1422303c28
SHA1

188e739b92e4c97e6063e60537790aefb4bc01b5
SHA256

ef4b95bd5d62d42053648cd7143617cfb5596767b417560bcf0f77780c3512ae
SHA512

b60d49301ee16027897b8dc62f996d6a2ef63737ae6e65790f812ff423c41342d582cf6e79a8b5c6c9081285bed76d4238cf739a94c4ecfde917d8c52d2b0142
SSDEEP

6144:WzGFy6sI6ZunGpz57gPKVVTMRRI6PMxsU/8:CFv7VTCI6PMx8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  511e23f355c0733204418b1422303c28.exe
- Size
  
  252KB
- MD5
  
  511e23f355c0733204418b1422303c28
- SHA1
  
  188e739b92e4c97e6063e60537790aefb4bc01b5
- SHA256
  
  ef4b95bd5d62d42053648cd7143617cfb5596767b417560bcf0f77780c3512ae
- SHA512
  
  b60d49301ee16027897b8dc62f996d6a2ef63737ae6e65790f812ff423c41342d582cf6e79a8b5c6c9081285bed76d4238cf739a94c4ecfde917d8c52d2b0142
- SSDEEP
  
  6144:WzGFy6sI6ZunGpz57gPKVVTMRRI6PMxsU/8:CFv7VTCI6PMx8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2