7a71f3fc79a8efdd0a58d25049f26836e7a4a2dd7638b8ce8a86e510e96d61e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Launcher.exe
Size

2.1MB
Sample

240305-s1aylsab4t
MD5

b309ee9e38a4b7814f9cb8437c577401
SHA1

2f5cc4f65b13940aad5005180bdb1af0a78df347
SHA256

7a71f3fc79a8efdd0a58d25049f26836e7a4a2dd7638b8ce8a86e510e96d61e1
SHA512

6c0486f8e4ab917a4ee6216f0d50dc75ffe530e943cdb67fec2e3bfc77e2dacb73e8ff8d497af244f271913ce124b3b5f643f0584ee65a73c3cd53403ed55a05
SSDEEP

24576:rb7C4wivbCZU7PyzeACCqzgM0hJLWe5Gsn:W4wWbqUbyk0Mn

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  Launcher.exe
- Size
  
  2.1MB
- MD5
  
  b309ee9e38a4b7814f9cb8437c577401
- SHA1
  
  2f5cc4f65b13940aad5005180bdb1af0a78df347
- SHA256
  
  7a71f3fc79a8efdd0a58d25049f26836e7a4a2dd7638b8ce8a86e510e96d61e1
- SHA512
  
  6c0486f8e4ab917a4ee6216f0d50dc75ffe530e943cdb67fec2e3bfc77e2dacb73e8ff8d497af244f271913ce124b3b5f643f0584ee65a73c3cd53403ed55a05
- SSDEEP
  
  24576:rb7C4wivbCZU7PyzeACCqzgM0hJLWe5Gsn:W4wWbqUbyk0Mn
Score

8^/10

persistence
- Downloads MZ/PE file
- Sets service image path in registry
  persistence
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2